Over time, you may have created many Allow (whitelist) or Deny (blacklist) policies for your Endpoint Detection & Response appliance. There may come a time when you need to remove multiple policies at once, or 'Bulk delete'.
Release : 4.6.8
Broadcom has exposed a set of Application Programming Interface's for 'on premise' EDR. You can find the API documentation here: https://apidocs.securitycloud.symantec.com/.
Among the methods available are the following API commands:
These methods are the only current ways to bulk delete 'Allow' or 'Deny' policies in the EDR Appliance.
Broadcom API's are not part of product standard support, see the Broadcom® Software Broadcom Maintenance Policy Handbook, and are intended for customers wishing to develop their own interfaces to our products.
If you are actually looking for information on importing policies see the EDR Help documentation page with the title of 'Importing Policies.' If you experience problems importing policies see the Troubleshooting error message: "Aborted importing policies. Error occured while serializing JSON object ..." while importing EDR Deny and Allow Lists article.