Creating a New Communication Control Policy

A new Communication Control policy can be created by cloning an existing policy, as described below. New policies are only needed if you are going to assign different policies to different Collector Groups. Otherwise, you can simply modify one of the default policies that come out-of-the-box and apply it to all FortiEDR Collector Groups by default. Modifications made on one policy do not affect any other policies.

In the policy list, check the policy that you want to clone. There are two types of Communication Control policies: blocklisting policies ( ), such as the Default communication control policy, which allows any connection by default, and allowlisting policies ( ), such as the Servers policy, which denies any connection by default.
Click the Clone button. The following window displays:
In the Cloned Policy Name field, specify a name for the cloned policy.
Click the Clone button.

Creating a New Communication Control Policy

In the policy list, check the policy that you want to clone. There are two types of Communication Control policies: blocklisting policies ( ), such as the Default communication control policy, which allows any connection by default, and allowlisting policies ( ), such as the Servers policy, which denies any connection by default.
Click the Clone button. The following window displays:
In the Cloned Policy Name field, specify a name for the cloned policy.
Click the Clone button.