Category Filter
Windows Policies
The win_password dictionary can contain the following keys:
| Argument | Type | Description | Default value |
|---|---|---|---|
| allow_simple | Boolean | Optional. | true |
| require_alphanumeric | String | Optional. Values can be alphanumeric, numeric or user_can_choose. |
user_can_choose |
| min_length | Integer | Optional. Values can be from 4 to 16. | |
| min_complex_chars | String | Optional. Values can be digits_only, digits_lower_letters or digits_lower_upper_letters. | digits_only |
| max_pinage_in_days | Integer | Optional. Values can be from 0 to 730. | |
| max_inactivity | Integer | Optional. Values can be from 0 to 999 | |
| pin_history | Integer | Optional. Possible values are from 0 to 24 | |
| max_failed_attempts | Integer | Optional. |
The win_wifi dictionary contains the following keys:
| Argument | Type | Description | Default value |
|---|---|---|---|
| service_set_identifier | String | Required | |
| connection_mode | String | Optional. Values can be Auto, Manual. | Auto |
| non_broadcast | Boolean | Optional | false |
| security_type | String | Required. Possible values are open, WEP, WPA-PSK/WPA2-PSK, WPA/WPA2 enterprise | open |
| proxy_type | String | Optional. Values can be None and Manual | None |
If the security_type field is set to WEP, WPA-PSK/WPA2-PSK, or WPA/WPA2 enterprise the following fields must also be provided:
| Argument | Type | Description | Default value |
|---|---|---|---|
| password | String | Required | |
| authentication | String | Required if WPA-PSK/WPA2-PSK, or WPA/WPA2 enterprise is set. Values can be WPA, WPA2, or open. | open |
| eap_type | String | Required if security_type is set to WPA/WPA2. Values can be PEAP-MSCHAPv2 or EAP TLS | EAP TLS |
If the proxy_type field is set to Manual the following fields must also be provided:
| Argument | Type | Description |
|---|---|---|
| proxyserver | String | Required. The proxy server’s network address. |
| proxy_server_port | Integer | Required. The proxy server’s port number. |
The winvpnpolicy dictionary contains the following keys:
| Argument | Type | Description | Default value |
|---|---|---|---|
| nativeprotocoltype | String | Values can be L2TP, PPTP, or IKEv2. | L2TP |
| profilename | String | Required. Specifies the profile name for the VPN connection. | |
| server | String | Required. Specifies the server address for the VPN connection. | |
| advanceconnection | Boolean | Optional | false |
| routelist | Array | Required if advanceconnection is true. Specifies the list of routes for the VPN connection. | |
| domainnameinfolist | Array | Required if advanceconnection is true. Specifies the list of domain names for the VPN connection. | |
| routingpolicytype | String | Required if advanceconnection is true. Specifies the routing policy type for VPN connection. Values can be allows_traffic_through_vpn_and_local_network_connection or force_all_traffic_through_vpn | allows_traffic_through_vpn_and_local_network_connection |
| proxytype | String | Optional. Values can be none, manual or auto_detect. | none |
| proxyserver | String | Required if proxytype is manual. Specifies the proxy server for the VPN connection. | |
| proxyurl | String | Required if proxytype is auto_detect. Specifies the proxy server for the VPN connection. | |
| connprcol | String | Required if connection type is IKEv2. Specifies the connection protocol for the VPN connection. Values can be EAP or machine_certificate. | EAP |
| userauth | String | The user authentication type for the VPN connection. Values can be password or shared_secret. | password |
| presharedkey | String | Required if the connection type is L2TP. The pre-shared key for the VPN connection. | |
| traficfiltriplst | Array | The list of traffic rules for the VPN connection. | |
| remembrcredntil | Boolean | Optional. The option to remember credentials for the VPN connection. | false |
| alwayson | Boolean | Optional. The option to enable always-on VPN for the connection. | false |
| bypassforlocal | Boolean | Optional. The option to allow local intranet traffic to bypass the VPN connection. | false |
| trustednetwork | String | The trusted network for the VPN connection. Multiple entries should be comma-separated. |
The windows_defender dictionary contains the following keys:
| Argument | Type | Description | Default value |
|---|---|---|---|
| enable_application_guard | Boolean | Required. | false |
| clipboard_settings | String | Required. Specifies the clipboard settings for the application guard. Values can be completely_turn_off_the_clipboard_functionality_for_the_application_guard, turn_on_clipboard_operation_from_an_isolated_session_to_the_host, turn_on_clipboard_operation_from_the_host_to_an_isolated_session, or turn_on_clipboard_operation_in_both_the_directions. | completely_turn_off_the_clipboard_functionality_for_the_application_guard |
| clipboard_file_type | String | Required. Specifies allowed file types for clipboard operations in the application guard. Values can be allow_copying_texts, allow_copying images, or allow_copying_text_and_images. | allow_copying_texts |
| printing_settings | Array | Specifies the printing settings for the application guard. | |
| block_non_enterprise_content | Boolean | Optional. | false |
| allow_data_persistence | Boolean | Optional | false |
| allow_virtual_gpu | Boolean | Optional | false |
| save_files_to_host | Boolean | Optional | false |
| certificate_thumbprints | String | Specifies the certificate thumbprints for the application guard. | |
| allow_camera_microphone_redirection | Boolean | Optional | false |
| hide_account_protection_area | Boolean | Optional | true |
| hide_app_and_browser_protection_area | Boolean | Optional | false |
| prevent_users_from_modifying_settings | Boolean | Optional | false |
| hide_device_security_area | Boolean | Optional | true |
| hide_tpm_firmware_update_recommendation | Boolean | Optional | false |
| hide_tpm_troubleshooter_page | Boolean | Optional | true |
| disable_clear_tpm_button | Boolean | Optional | true |
| hide_secure_boot_area | Boolean | Optional | true |
| notifications | String | Optional. Specifies the notification settings for the application guard. Values can be display_all_notifications, display_only_critical_notifications, or disable_all_notifications. | display_all_notifications |
| hide_family_options_area | Boolean | Optional | true |
| hide_device_performance_and_health_area | Boolean | Optional | true |
| hide_firewall_and_network_protection_area | Boolean | Optional | true |
| hide_virus_and_threat_protection_area | Boolean | Optional | true |
| hide_ransomware_data_recovery_area | Boolean | Optional | true |
| configure_customized_notifications | Boolean | Optional | false |
| show_customized_contact_information | Boolean | Optional | false |
| contact_company_name | String | Required if ‘show_customized_contact_information’ is true. Specifies the company name for customized contact information in the application guard. | |
| contact_email | String | Required if ‘show_customized_contact_information’ is true and when ‘contact_phone’ and ‘contact_website’ fields are not specified. Specifies the email address for customized contact information in the application guard. | |
| contact_phone | String | Required if ‘show_customized_contact_information’ is true. and when ‘contact_email’ and ‘contact_website’ fields are not specified. Specifies the phone number for customized contact information in the application guard. | |
| contact_website | String | Required if ‘show_customized_contact_information’ is true and when ‘contact_email’ and ‘contact_phone’ fields are not specified. Specifies the website URL for customized contact information in the application guard. | |
| hide_windows_security_systray | Boolean | Optional. | false |
curl
HTTP Request:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 |
POST https://.hexnodemdm.com/api/v1/policy/ headers:- Authorization: Content-Type: application/json Sample Post Data:- [{ "name": "Sales Team Policy", "description": "", "windows": { "win_password": { "require_alphanumeric": "user_can_choose", "allow_simple": true, "max_failed_attempts": 0, "max_inactivity": 5, "max_pinage_in_days": 0, "min_complex_chars": "digits_only", "min_length": 4, "pin_history": 0 }, "win_wifi": null, "winvpnpolicy": null, "windows_defender": null, "policy_targets": { "devices": [2,4], "devicegroups": [], "users": [], "usergroups": [] } } }] |
Shell Command
|
1 2 |
curl -H "Authorization:" -H "Content-Type: application/json" -d '{"name":"Sales Team Policy","description":"","windows":{"win_password":{"require_alphanumeric":"user_can_choose","allow_simple":true,"max_failed_attempts":0,"max_inactivity":5,"max_pinage_in_days":0,"min_complex_chars":"digits_only","min_length":4,"pin_history":0}},"policy_targets":{"devices":[2,4],"devicegroups":[],"users":[],"usergroups":[]} }' https://.hexnodemdm.com/api/v1/policy/ -X POST |
HTTP Response:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 |
HTTP/1.1 201 Created { "id": 4, "name": "Sales Team Policy", "description": "", "version": 1, "ios_configured": false, "android_configured": false, "windows_configured": true, "macos_configured": false, "created_time": "2023-11-09T11:27:57.037007Z", "modified_time": "2023-11-09T11:27:57.036809Z", "ios": null, "android": null, "windows": { "win_password": { "require_alphanumeric": "user_can_choose", "allow_simple": true, "max_failed_attempts": 0, "max_inactivity": 5, "max_pinage_in_days": 0, "min_complex_chars": "digits_only", "min_length": 4, "pin_history": 0, "force_pin": 0 }, "win_wifi": null, "winvpnpolicy": null, "windows_defender": null }, "macos": null, "app_management": { "whitelist_apps": { "app": [], "group": [] }, "blacklist_apps": { "app": [], "group": [] }, "mandatory_apps": { "app": [], "group": [] }, "catalogues": [] }, "general_settings": { "location_settings": { "tracking_disabled": true, "interval_minutes": 60, "location_configured": false } }, "policy_targets": { "devices": [2,4], "devicegroups": [], "users": [], "usergroups": [] } } |