Enable tamper protection feature flag by default for Agent 8.11.0 #3478
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
Enables tamper protection feature flag by default for Agent 8.11.0.
In the 8.10.0 the default tamper protection feature flag disabled by default.
ATTN!!!: It is important to use the Agent with corresponding Endpoint build for 8.11.0 that has the feature flags default set to the same value for the feature to work correctly.
(omitting the link to Endpoint PR here since the Endpoint repository is private)
The combination of agent feature flag value in the policy
and the agent protection flag
define if the tamper protection is enabled or not.
Here are the tables that help to understand how this change of the tamper protection feature flag value affects 8.11 settings.
The difference is in bold
8.10.x
8.11.x
This shows that it's important to use the corresponding builds of Agent and Endpoint with the same defaults.
This was discussed and agreed upon when the feature flag was initially introduced in 8.10.
For example if the builds are mismatched:
Why is it important?
This is a part of planned tamper protection feature rollout step for 8.11.0 release.
Checklist
./changelog/fragments
using the changelog tool