Installation prerequisites

The Tanium Module server must be running when you install Protect.

Required credentials

Before installing Protect, you will need to have a service account with Tanium Administrator credentials.

In order to initialize Protect, a valid Tanium account with Action Author permissions is required. Protect uses this account to perform internal maintenance tasks.

System requirements

Following are the requirements for each policy and rule type in Protect:

Anti-Malware policy

System Center Endpoint Protection (SCEP)

  • Windows 7
  • Windows Server 2008 R2 or 2012

Windows Defender

  • Windows 8 or 10
  • Windows Server 2016

AppLocker policy

  • Windows 7 Enterprise or Ultimate
  • Windows 8 Enterprise, 8.1 Enterprise, or 10 Enterprise
  • Windows Server 2008 R2 or later

EMET policy

  • Windows Vista or later
  • Windows Server 2008 or later

Firewall management policy

  • Windows Vista or later
  • Windows Server 2008 or later

SRP management rules

  • Windows Vista or later
  • Windows Server 2008 or later

Protect roles and privileges

Protect role-based access control (RBAC) permissions control access to Protect functions. The three predefined roles are Protect Admin, Protect User, and Protect Read Only User.

Table 1:   Protect User Role Privileges
Privilege Protect Admin Protect User Protect Read Only User
View policies, enforcements, reports, and results for Protect questions asked in Interact
Create policies, enforcements, and reports
Edit policies, enforcements, and reports
Re-prioritize policies
Export policies
Import policies
Change Protect settings

Last updated: 5/23/2018 10:29 AM | Feedback