Creating Computer Groups
To add new Computer Groups for your organization’s environment:
-
On the Compter Groups page, click Create Computer Group.
-
From the Platform/Location drop-down list box, select macOS, Secured Scope, Unix/Linux, or Windows.
-
From the Create Computer Group window, enter a Name and Description for your new group.
Creating Filter Rules and Collections
To select the machines you want to include within a Computer Group, you must add filter rules that target the appropriate machines on your organization’s network. The default filter rule begins with a rule that targets computers within the main OS Computer Group that you selected when you initially created the group. Refer to the Example.
You can add multiple rules per Computer Group. To change existing Computer Groups, you can select Add Rule or change the resources already targeted.
-
To narrow your group, click Add Rule.
-
Specify the Operation behavior, such as:
- Only Keep Computers in (default)
- Include Computers in
- Remove Computers in
-
In the List Type column, select from the following options:
-
Computer List: Under Selected Items, if the label, Nothing selected appears, click Add. Search for and select computers from the list of registered machines.
-
Collection: Under Selected Items, click the drop-down list box and choose a collection name such as, All Windows Desktops or All Windows Servers.
-
OU/Scope: Under Selected Items, click Select and choose from the options that appear.
-
Security Group: Under Selected Items, search for and select a security group filter.
-
-
Click Save Changes. Return to the Computer Groups page. The new computer group appears in the table.
Example
When defining a Collection, you can use the ready-made Items in the Computers Group you have created. (Windows Servers, Windows Desktops, etc.). Or, you can create a custom resources group Different options can be used.
To create a custom resource group, navigate to Admin | Resources. Select the Resource Filters tab and click Create. In this example, a Custom group for machines whose machine name starts with "wg-" is created.
Then, this group is added to the Computers Group.
The first rule must start with Only Keep Computers. Then, Include Computers In or Exclude Computers In rules can be used. For example, you can add computers whose machine name starts with WG- and are not Windows Desktops.
As an alternative to using Collections, you can also use OU/Scope, Security Group and Computer List to Include Computers Inor Exclude Computers In. In this example, the collection of computers whose names starts with wg-, and are named centos1 will be members of this group.
Defining Policies, User Management, and Agents
Expand the left navigation tree for the new computer group. Click the available features (Application Policies, User Management, Group Management, Scheduled Jobs, and Agent Configuration) to further configure the computer group.
For example:
Refer to the following sections:
-
Application Policies (Windows, macOS, Unix/Linux)
- Policies associated with Application Control that you establish using the Create Wizard policy.
- User Management (Windows, macOS)
-
Group Management (Windows, macOS)
- Local security control that pertains to specific groups of users.
-
Scheduled Jobs (Windows, macOS, Unix/Linux)
- Client tasks that you designate to run on certain dates and at certain times. Verify Privilege Managersets many scheduled jobs to Active by default.
-
Agent Configuration (Windows, macOS, Unix/Linux)