Guest introspection policies can be implemented only when a service profile is available in NSX-T Data Center. Service profiles are created from a template provided by the partner. Service Profiles are a way for the administrator to choose protection levels (Gold, Silver, Platinum policy) for a VM by choosing the vendor templates provided by the vendor.
For example, a vendor can provide Gold, Platinum, and Silver policy levels. Each profile created might serve a different type of workload. A Gold service profile provides complete antimalware to a PCI-type workload, while a silver service profile only provides basic antimalware protection to a regular workload.
Procedure
Results
After creating service profile, an NSX admin creates rules to associate a service profile to a group of VMs before publishing the policy rule.
What to do next
Apply endpoint protection policy on guest VM groups that need to be protected from malware. See Consume Guest Introspection Policy.