Protected Theater Actions are a special type of Host CLI Action that includes destructive behaviors. These Actions can include malicious files or be completely based on code, using one of the following shells: cmd.exe, PowerShell 2.0+, Python, and Bash.
In general, the overall process to create a Protected Theater Action includes the following steps:
- Determine if the Action uses a file and if that file is already in the File Library.
- If necessary, go to the File Library and add the file.
- Approve the file / have your Security Validation admin approve the file.
- From the Action Library, select the option to create a Host CLI Action.
- Create and save (save and Require Protected if you have the permissions) the Host CLI Action.
- If necessary, have your Security Validation admin review and save as a Protected Theater Action.
As with standard Host CLI Actions, there are several options and limitations you need to be aware of.
For adding and approving files, see:
For creating and approving the Host CLI Action, see: