It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda SecureEdge

Tamperproof

  • Last updated on

The Barracuda SecureEdge Tamperproof feature provides an easy way to protect against unauthorized or accidental tampering with the SecureEdge Access Agent app installation, security policy, and app settings on endpoints. When you enable Tamperproof on a device, the user will no longer be able to do the following: disable the SecureEdge Access Agent, unenroll the Access Agent, or use the right-click Quit option for the SecureEdge Access Agent in the system tray. In other words, the Tamperproof feature hides the quit, unenroll, and disable options on the SecureEdge Access Agent app. You can override the SecureEdge global access settings and create settings on a user level. Note the different behavior depending on the OS as described in the Operating System Specifics section below.

To configure this feature at a global level, go to Access > Settings. In the ACCESS SETTING section, specify values for the following:

  • Tamperproof – Click to enable. Turning this setting on applies tamperproof protection to all enrolled devices.  You can override this setting for individual users by navigating to the Access > Users  page and clicking on the arrow icon next to the user. You must first enable User Override for a specific user before configuring individual settings for Tamperproof. Specify values for the following: 
    • User Override – Click to enable/disable. By default, User Override is disabled.
      • If User Override is enabled, specify values for the following:

        • Tamperproof –  Click to enable/disable. By default, Tamperproof is disabled. 

          • If Tamperproof is enabled, the user will no longer be able to do the following: 

            • Disable the SecureEdge Access Agent
            • Unenroll 
            • The right-click Quit option for the SecureEdge Access Agent will not be available on the system tray. Note:  This applies to desktop applications.

          • If Tamperproof is disabled, all of the above-mentioned features are available to the user. 

            For devices running iOS, iPadOS, or Android, an MDM solution is required.


    • If User Override is disabled, you cannot override SecureEdge Access global settings. 

Operating System Specifics

  • Windows – With Windows, the SecureEdge Access Agent app automatically starts on Windows startup. To prevent uninstallation and stopping of the agent by the user, install the process as an administrator and assign user-level access to the end user.
  • macOS – Requires an MDM solution and deployment of the .mobilconfig and .plist files, which enable SecureEdge Access to automatically start on the endpoint and prevent the agent from being stopped by the user. The .mobilecconfig file is set to prevent the VPN profile from being uninstalled and to make sure that the user cannot bypass web filtering by recreating a connection on the VPN when a connection is initiated. The .plist file is used to restart the SecureEdge Access Agent app if it is closed.