Skip to main content

Configuration of monitoring policies

To manage security for your devices in Datto RMM, you execute Bitdefendercomponents through monitoring policies and jobs. A monitoring policy configured at the site level executes Bitdefendercomponents to verify installation and update status, and deploy the security agent. For example, through a monitoring policy, you can raise a critical alert if a device is not protected and configure a response action to deploy the security agent.

Important

To make the Bitdefender components available to your actions, you need to add them to your favorite list. 

Navigate to Components > All Components and click the star icon next to the following Bitdefender components:

  • Bitdefender GravityZone - Device Monitor

  • Bitdefender GravityZone - Endpoint Management [Datto Companion APP]

Creating a policy

Notice

Due to a Datto RMM limitation for the New UI, components do not run correctly when used for both jobs and monitor responses on the same device. 

In order to create a policy, we recommend using the Datto RMM Legacy UI. Your Datto RMM account requires administrator rights to create policies.

To create a policy for your site:

  1. In the Datto RMM Web Portal, click Sites to open the drop-down list.

  2. Select a site and go to the Policies tab.

  3. Click New site policy. The New Policy window appears.

  4. Configure the following elements:

    • Name: Enter a name for your policy

    • Type: Monitoring

    • Based on: new policy 

    The New Monitoring Policy window appears.

    datto_monitoring_policies_p_300469_en.png

To add targets:

  1. Click Add a target.

  2. Select a target type from the drop-down list.

    For information about target types, refer to Filters and Groups in Datto documentation.

  3. Choose your filters and groups.

    For example, by selecting the Default Device Filter you can choose All Windows Desktops from the drop-down list.

  4. Click Add to save the targets to the monitoring policy.

    Notice

    To add multiple targets, repeat the steps.

    datto_add_target_p_300469_en.png

To add monitors:

  1. Click Add a monitor.

    In the Monitor Type section, select Component Monitor, click Next and choose  BitdefenderGravityZone - Device Monitor from the right-side list.

  2. Configure the Monitor Details section as follows:

    1. Choose an Action from the drop-down list:

      • Verify Install to check for security agent deployment.

      • Verify Update to check for update status.

      • Verify Full Scan to check when the security agent has executed a full scan on the target last time.

      • Verify Quick Scan to check when the security agent has executed a quick scan on the target last time.

    2. Set the execution intervals.

      • For the Verify Full Scan and Verify Quick Scan options, configure the interval since the last scan has taken place (in days).

      • For execute every (minutes), specify 5 minutes as best practice (no less than 2 minutes).

        Warning

        Make sure you set a correct execution interval to avoid errors.

    3. Under Alert Details, choose an alert priority type.

      Set a time interval for Auto-Resolution, if needed. select After 10 minutes as best practice (no less than 5 minutes).

      Warning

      Make sure you set a correct execution interval to avoid errors.

      datto_add_monitor_old_p_300469_en.png
  3. Configure the Response Details section as follows:

    1. Select Run the following component and select  Bitdefender GravityZone - Endpoint Management [Datto Companion APP].

    2. Choose an action from the drop-down list:

      • Install BEST to deploy the security agent.

      • Update BEST to update security agent.

      • Start Full Scan to begin a full scan task on the selected targets.

      • Start Quick Scan to begin a quick task on the selected targets.

      Notice

      Make sure to match the component action to the monitor action from step 3. For example, Verify Install with Install BEST or Verify Quick Scan with Start Quick Scan.

  4. Configure email recipients to send out notifications when the alert is raised.

    datto_add_monitor_management_old_p_300469_en.png
  5. Under Ticket Details, configure the New Ticket details if the alert should generate a ticket.

    For more information, refer to Alerts and tickets in Datto documentation.

    To view alerts generated by monitors, refer to Manage monitors in Datto documentation.

  6. To apply the policy immediately, click the Save and Push Changes button. 

    To only save the policy, click the Save Only button.

    datto_save_policy_oldUI_p_300469_en.png

Editing policies

To edit a monitoring policy in the old UI:

  1. Log in to Web Portal.

  2. Click Sites to open the drop-down list.

  3. Go to the Policies tab of your selected site.

  4. Click on the policy name to edit.

  5. You can edit the following elements:

    • Name

    • Targets

    • Monitors

  6. Click Save and Push Changes to save changes and apply the edited monitor policy immediately.

Configuring policy exclusions

You can exclude devices individually from the monitoring policy.

To configure monitoring policy exclusions:

  1. Log in to Web Portal.

  2. Click Sites to open the drop-down list.

  3. Go to the Policies tab of your selected site.

  4. Find your monitor policy under the Site Policies section.

  5. Click icon-relay-datto.pngto view the device list.

    datto_policies_exclusions_p_300469_en.png
  6. Select the All devices filter.

  7. Toggle the active state to exclude a device from the monitor policy.

    datto-exclusions.png

Note

Your Datto RMM account requires administrator rights to configure policy exclusions.