Dr.Web Enterprise Security Suite allows you to configure the rules of automatic inclusion of stations into user groups.
Automatic placement of stations in a group
To specify the rules for automatic inclusion of stations in a group
1.Select Anti-virus Network in the main menu of the Control Center.
2.From the hierarchical list of the anti-virus network, select a user group for which you want to specify membership rules.
3.Open the membership rules editing section in one of the following ways:
•In the group properties pane on the right side, click 
Group membership rules in the Configuration section.
•In the control menu, in the General section, select Group membership rules.
•In the control menu, in the General section, select Properties, open the Configuration tab and click Group membership rules.
4.If no group membership rules have been specified before, click Add the rule.
5.If needed, select the Set group as primary check box to automatically assign the group for which the rule is created as the primary group for all stations that will be moved to this group according to this rule.
6.Select one of the options that determine how the rules will be applied:
•Apply rules after saving—apply these rules immediately after clicking the Save button to all stations registered on this Dr.Web Server. If there are a large number of stations connected to Dr.Web Server, performing this action may take some time. Rules for regrouping stations are applied to all already registered stations immediately after the action is set and will be applied further to all stations, including those registered with Dr.Web Server for the first time, at the time of their connection.
•Apply rules on stations connect—apply these rules to stations at the moment of their connection to Dr.Web Server. Rules for regrouping stations are applied to all already registered stations at the moment of their next connection to Dr.Web Server and will be applied to all stations registered with Dr.Web Server for the first time at the time of their first connection.
7.Membership rules are grouped into blocks. Specify the following settings for each block of rules:
a)Select one of the options that determine how the rules are combined inside this block: Matches all conditions, Matches any of conditions, Does not match any of conditions.
b)From the condition drop-down lists, select a station parameter that will be checked for compliance with the conditions and the principle of compliance with this condition. If the station parameter implies it, specify the condition string in the input field to the right of the drop-down lists.
Stations can be combined into groups based on the following conditions:
•Dr.Web Server ID of the Dr.Web Server the station connects to (a set of characters contained in the ID or a regular expression);
•Station ID (a set of characters contained in the ID or a regular expression);
•IP address (a set of characters contained in the IP address, the subnet it is part of, or a regular expression);
|
Grouping stations based on the IP address condition does not work correctly if DNS names are written in the workstation address fields in the Control Center instead of IP addresses (the Replace IP addresses flag is set in the Administration → Dr.Web Server configuration section on the General tab). If you want to group stations by their addresses, there are two ways of resolving the conflict between these settings: •clear the Replace IP addresses flag on the General tab in the Administration → Dr.Web Server configuration section; •when selecting the IP address parameter, instead of specifying characters contained in the IP addresses of stations, specify characters contained in their DNS names, or an appropriate regular expression. Specifying the subnet is not allowed in this case. |
•LDAP DN from Active Directory (a set of characters contained in the LDAP DN or a regular expression);
|
If you select the LDAP DN from Active Directory parameter, perform the following: 1.Enable the Synchronization with Active Directory task in the Dr.Web Server schedule (Administration → Dr.Web Server Task Scheduler). 2.In the membership rules, specify the required DN as a condition string for the LDAP DN from Active Directory parameter, for example: |
•Station name (a set of characters contained in the name or a regular expression);
•Newbie (stations are added to the group based on whether or not they have the newbie status);
•Operating system build (a set of characters contained in the build number or a regular expression);
•Operating system installed on the station (Windows, UNIX, macOS, Android, etc.; the Unknown value is also available);
•Description (a set of characters contained in the description or a regular expression);
•Station platform (the version of the OS installed on the station);
•Connection protocol (TCP IP, TCP IPv6, UNIX);
•Station type (Full agent, Virtual agent, Scanning server).
|
You may use regular expressions only for the matches regular expression option. All other options search for the exact match of the entered string. Regular expressions are briefly described in the Appendices document, section Appendix I. Regular Expressions Used in Dr.Web Enterprise Security Suite. |
To add another condition to this block of rules, click 
to the right of the condition string.
c)To add a new block of rules, click to the right of the block. Specify the principle of combining this block of conditions with other blocks:
•AND—conditions of the blocks must be fulfilled simultaneously,
•OR—conditions of at least one of the blocks must be fulfilled.
|
If several blocks are joined by AND and OR operators, AND takes the priority. For instance, if your sequence of blocks looks like [1] AND [2] OR [3] AND [4], stations will be placed in the group according to this representation: ( [1] AND [2] ) OR ( [3] AND [4] ). |
8.If you would like to check whether a certain station meets the conditions specified in the group membership rules first, click Check station. Select the station in the hierarchical list and click Check. The window then displays a message about whether the station meets the group membership requirements.
9.To save and apply the changes, click Save.
When automatic membership rules are specified for a user group, the icon is displayed next to the icon of this group in the hierarchical list, if the Show membership rule icon check box is set in the 
Settings of tree view list on the toolbar.
Automatic removal of stations from groups
If a station was automatically included in a user group according to the membership rules, manually removing the station from this groups makes no sense, because the station will be automatically returned to this group the next time it connects to Dr.Web Server. To exclude an automatically station (stations) from the group, you can use one of the following methods:
•Change the station parameters in such a way that they no longer meet the group membership conditions. The station will be excluded from the group once it connects to Dr.Web Server.
•Add an additional rule or block of rules with the AND operator and specify conditions that are met by all stations in the group but the station in question. The station will be excluded from the group in accordance with the selected rule application option (see step 6).
•Add an additional block of rules with the AND operator, select the Does not match any of conditions combination principle and create a rule to be uniquely matched by the station in question. The station will be excluded from the group in accordance with the selected rule application option (see step 6).
To remove rules for automatic inclusion of stations in a group
1.Select Anti-virus Network in the main menu of the Control Center.
2.From the hierarchical list of the anti-virus network, select a user group for which you want to remove membership rules.
3.Perform one of the following actions:
•On the toolbar, click 
Remove membership rules.
•In the group properties pane on the right side, click Remove membership rules in the Configuration section.
•In the control menu, select Properties in the General section, open the Configuration tab and click Remove membership rules.
After group membership rules are removed, all stations included in the group will be automatically removed. If this group was set by the administrator as the primary group for any of these stations, the Everyone group will be set as the primary group for these stations after they are removed from the group.