Configuring Agent Privileges and Other Settings

Grant users the privileges to modify certain settings and perform high level tasks on the Security Agent.

Antivirus settings only appear after activating the Trend Micro Apex One Antivirus feature.

To enforce uniform settings and policies throughout the organization, grant limited privileges to users.

Go to Agents → Agent Management.
In the agent tree, click the root domain icon () to include all agents or select specific domains or agents.
Click Settings → Privileges and Other Settings.

On the Privileges tab, configure the following user privileges:

Agent Privileges	Reference
Independent Mode Privilege	Security Agent Independent Mode Privilege
Scan Privileges	Scan Type Privileges
Scheduled Scan Privileges	Scheduled Scan Privileges and Other Settings
Firewall Privileges	Firewall Privileges
Behavior Monitoring Privileges	Behavior Monitoring Privileges
Trusted Program List	Trusted Program List Privilege
Mail Scan Privileges	Mail Scan Privileges and Other Settings
Proxy Setting Privileges	Granting Proxy Configuration Privileges
Component Update Privileges	Configuring Update Privileges and Other Settings
Unloading and Unlocking	Granting the Agent Unloading and Unlocking Privilege
Uninstallation	Granting the Security Agent Uninstallation Privilege

Click the Other Settings tab and configure the following settings:

Setting	Reference
Update Settings	Configuring Update Privileges and Other Settings
Web Reputation Settings	Web Threat Notifications for Agent Users
Behavior Monitoring Settings	Behavior Monitoring Privileges
C&C Contact Alert Settings	C&C Contact Alert Notifications for Agent Users
Central Quarantine Restore Alert Settings	Displays a notification message on the endpoint after restoring a quarantined file
Predictive Machine Learning Settings	Displays a notification message on the endpoint after detecting an unknown threat
Scheduled Scan Settings	Granting Scheduled Scan Privileges and Displaying the Privilege Notification
Cache Settings for Scans	Cache Settings for Scans
POP3 Email Scan Settings	Granting Mail Scan Privileges and Enabling POP3 Mail Scan
Security Agent Access Restriction	Security Agent Console Access Restriction
Restart Notification	Security Risk Notifications for Security Agent Users

If you selected domain(s) or agent(s) in the agent tree, click Save. If you clicked the root domain icon, choose from the following options:
- Apply to All Agents: Applies settings to all existing agents and to any new agent added to an existing/future domain. Future domains are domains not yet created at the time you configured the settings.
- Apply to Future Domains Only: Applies settings only to agents added to future domains. This option will not apply settings to new agents added to an existing domain.