Command Overview
beacon rules remove removes one installed threat-detection rule from the local store by rule id.
Command syntax
beacon rules list first when you need to confirm the active rule ids.
Examples
Remove one rule from the user-mode store:Remove a rule
Remove a system-mode rule
Flags
| Flag | Description |
|---|---|
--user | Use per-user endpoint paths. Enabled by default |
--system | Use system endpoint paths |
Related
beacon rules list
List active rules and rule ids.
beacon rules add
Install local rules into the store.