Avatar of Pau Lo
Pau Lo
 asked on

windows firewall and endpoint protection - assurances they cannot be modified.

We need some assurance end users (who dont have local or domain admin rights) cannot amend local AV or Firewall settings. The AV is system centre endpoint protection. If they dont have local admin permissions over their laptop/desktop - is that 100% compliance they cannot amend these settings, or are there other avenues we need to test - if so what clever workarounds/tricks could a malicious user attempt to amend the firewall/AV? I did read about techniques such as NET STOP but surely for that to work still depends on permissions? these are windows 7 devices.
OS SecuritySecurityWindows OSWindows 7

Avatar of undefined
Last Comment
McKnife

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
McKnife

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes