A good “best practice” for Trend Micro Deep Security and Cloud One – Workload Security for Windows Agents is to enable and password protect Agent self-protection.
The Agent self-protection prevents local users from tampering with the agent. When enabled, if a user tries to tamper with the agent, the message "Removal or modification of this application is prohibited by its security settings" will be displayed, preventing the modification.
Visit the following links to enable self-protection:
- Deep Security
- Cloud One – Workload Security
- Additional best practices for Cloud One – Workload Security
For more details, visit the Deep Security Help Center.
If you have any questions or concerns, please contact Trend Micro Technical Support or your assigned Customer Service Manager.