Policies are used to push specific configurations to ESET products running on client computers. This allows you to avoid configuring each client's ESET product manually. A policy can be applied directly to individual Computers as well as groups (Static and Dynamic). You can also assign multiple policies to a computer or a group, unlike in ESET Remote Administrator 5 and earlier where it was only possible to apply one policy to one product or component.
Policies and permissions
The user must have sufficient permissions to create and assign policies. Permissions needed for certain Policies actions:
•To read the list of policies and their configuration a user needs Read permission.
•To assign policies to targets, a user needs Use permission.
•To create, modify or edit policies, a user needs Write permission.
See the list of permissions for more information on access rights.
Policies are applied in the order that Static Groups are arranged. This is not true for Dynamic Groups, where child Dynamic Groups are traversed first. This allows you to apply policies with greater impact at the top of the Group tree and apply more specific policies for subgroups. Using flags, an ERA user with access to groups located higher in the tree can override the policies of lower groups. The algorithm is explained in detail in How Policies are applied to clients.
A policy applied to a client is usually the result of multiple policies being merged into one final policy.