ESET Online Help

Search English
Select the topic

How to apply a recommended policy for ESET Endpoint Antivirus

The best practice after connecting ESET Endpoint Antivirus to ESET PROTECT is to apply a recommended policy or apply a custom one.

There are several built-in policies for ESET Endpoint Antivirus:




Security configuration recommended for most of the setups.

Antivirus—Maximum security

Taking advantage of machine learning, deep behavioral inspection and SSL filtering. Detection of potentially unsafe, unwanted and suspicious applications are affected.

Cloud-based reputation and feedback system

Enables ESET LiveGrid® cloud-based reputation as well as feedback system to improve detection of latest threats and help sharing malicious or unknown potential threats for further analysis.

Device control—Maximum security

All devices are blocked. When any device wants to be connected, it needs to be allowed by an admin.

Device Control—Read-only

All devices can only be read. No write is allowed.

Firewall—Block all traffic except ESET PROTECT & ESET Inspect connection

Block all traffic except connection to ESET PROTECT and ESET Inspect Server (ESET Endpoint Security only).

Logging—Full diagnostic logging

This template will ensure that the administrator will have all logs available, when needed. Everything will be logged from minimum verbosity including HIPS and ThreatSense, Firewall. Logs are automatically deleted after 90 days.

Logging—Log important events only

Policy ensures that warnings, errors and critical events will be logged. Logs are automatically deleted after 90 days.


Default setting for visibility. Statuses and notifications are enabled.

Visibility—Invisible mode

Disabled notifications, alerts, GUI, integration to context menu. No egui.exe will run. Suitable for management solely from ESET PROTECT Cloud.

Visibility—Reduced interaction with user

Disabled statuses, disabled notifications, GUI presented.

To set the policy named as Antivirus - Maximum security which enforces more than 50 recommended settings for ESET Endpoint Antivirus installed on your workstations, follow these steps:


The following ESET Knowledgebase article may only be available in English:

Apply a recommended or pre-defined policy for ESET Endpoint Antivirus using ESET PROTECT

  1. Open the ESET PROTECT Web Console.
  2. Navigate to ICON_ESMC_POLICY Polices and expand Built-in Policies > ESET Endpoint for Windows.
  3. Click Antivirus - Maximum security - recommended.
  4. In the Assigned to tab click Assign client(s) or Assign groups(s) and select the appropriate computers for which you want to apply this policy.


To see which settings are applied for this policy, click the Settings tab and expand the Advanced setup tree.