Managing device policies

A device policy defines how the

CylancePROTECT

agent handles malware it detects on a user’s device. A device policy is also used to enable and configure other services, including

CylanceOPTICS

and

CylancePERSONA Desktop

. Every device must be assigned a device policy. If you do not assign a custom policy to a device, the device is assigned the default policy.

The device policy templates allow you to configure and customize policy settings, apply them to new and existing tenants, and manage device policy assignments for all tenants directly from the

Cylance

Multi-Tenant Console

Policy template actions are recorded in the console audit log, which includes the user who performed the action and the time of the action.

Policy template role permissions allow you to grant console users access to the policy template. Enabling a policy template permission does not automatically enable any dependencies. For example, if you enable the read policy template details permission, you must also enable the view policy template list permission. For more information, see Create and customize partner roles.

Note that there is no automated synchronization between the device policy template and the tenant policies. If you update the template, you will have to re-apply the template to a tenant.

Step	Action
	Create a device policy template.
	Apply a device policy template to a tenant.
	Assign a device policy to a device.

Create a device policy template

Apply a device policy template to a tenant

Assign a device policy to a device

Device policy settings