How to disable the end user ability to stop the Endpoint Security service

Version 10

    Verified Product Versions

    LANDESK Management Suite 9.5LANDESK Management Suite 9.6LANDESK Management Suite 2016.x

    This document illustrates how to lock down the EPS client so that the end user cannot change settings.


    This turns on the following safeguards:


    1. Prevent the right-click "Disable Protection" option.  This is done by adding a username and password.  This will also stop other attempted actions within the LANDESK EPS UI.
    2. Disable the ability to stop the LANDESK Endpoint Security service within the Windows Services applet
    3. Block attempts to go into safe mode to bypass Endpoint Security.


    In order to keep the end user from being able to stop the LANDESK Endpoint Security service perform the following steps:


    1. Open the top-level Endpoint Security setting you would like to edit.
    2. Go to the General Settings on the left.
    3. Check the box "Use a password for Administrator" and enter a password.
    4. Deselect the option "Allow Windows Service Control Manager to stop LANDESK Endpoint Security Service"
    5. Check the box next to "Enforce LANDESK Endpoint Security protection while in Safe Mode".



    In addition to provide added Security you can choose how transparent to make LANDESK Endpoint Security to the End User by checking the Client Interface options as pictured above.