ENTERPRISEPlan ENTERPRISE
Endpoint Protection
Protection des postes de travail et navigateurs contre les interactions non-autorisees avec les outils IA.
Fonctionnalites Cles
Browser Extension
Extension Chrome/Edge/Firefox pour controler l'acces aux outils IA.
MDM Intégration
Déploiement centralise via Intune, JAMF, ou autre MDM.
DNS Filtering
Blocage au niveau DNS des domaines IA non-approuves.
Policy Engine
Règles granulaires par utilisateur, groupe, ou departement.
Extension Navigateur
L'extension Adlibo protégé les utilisateurs contre l'utilisation non-autorisée d'outils IA et previent les fuites de données.
Chrome
DisponibleEdge
DisponibleFirefox
BetaFonctionnalites
Blocage des sites IA non-approuves (ChatGPT, Claude, Gemini, etc.)
Détection du copy/paste de données sensibles
Avertissement avant soumission de données confidentielles
Logging des interactions pour audit
Mode "Approved Only" ou "Block List"
Intégration DLP temps reel
Configuration des Politiques
json
// POST /api/saas/endpoint/policies
{
"name": "Default AI Policy",
"scope": {
"type": "organization", // organization, group, user
"targets": ["org_abc123"]
},
"rules": {
"aiServices": {
"mode": "allowlist", // allowlist, blocklist
"allowed": [
{
"domain": "chat.openai.com",
"name": "ChatGPT Enterprise",
"conditions": {
"requireDlp": true,
"maxInputLength": 5000
}
},
{
"domain": "claude.ai",
"name": "Claude for Work",
"conditions": {
"requireDlp": true,
"allowedDomains": ["PERSONAL", "CORPORATE"]
}
}
],
"blocked": [
{ "domain": "*.openai.com", "except": ["chat.openai.com"] },
{ "domain": "bard.google.com" },
{ "domain": "perplexity.ai" }
]
},
"dataProtection": {
"blockCopyPaste": {
"enabled": true,
"patterns": ["CREDIT_CARD", "SSN", "API_KEY", "PASSWORD"]
},
"warnBeforeSubmit": {
"enabled": true,
"threshold": 50 // Risk score threshold
},
"preventScreenshot": false
},
"logging": {
"logAllInteractions": true,
"logBlockedAttempts": true,
"retentionDays": 90
}
},
"enforcement": "block", // block, warn, log
"enabled": true
}Déploiement MDM
Microsoft Intune
powershell
# PowerShell - Déploiement via Intune
$extensionId = "adlibo-endpoint-protection"
$policyId = "pol_abc123"
# Configuration Chrome
$chromeConfig = @{
"ExtensionSettings" = @{
$extensionId = @{
"installation_mode" = "force_installed"
"update_url" = "https://www.adlibo.com/extension/chrome/updates.xml"
}
}
}
# Configuration Edge
$edgeConfig = @{
"ExtensionSettings" = @{
$extensionId = @{
"installation_mode" = "force_installed"
"update_url" = "https://www.adlibo.com/extension/edge/updates.xml"
}
}
}JAMF (macOS)
xml
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN">
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>ExtensionInstallForcelist</key>
<array>
<string>adlibo-endpoint;https://www.adlibo.com/extension/chrome/updates.xml</string>
</array>
<key>PayloadType</key>
<string>com.google.Chrome</string>
</dict>
</array>
</dict>
</plist>Group Policy (GPO)
text
# Registry keys pour Chrome
HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist
Value: "adlibo-endpoint;https://www.adlibo.com/extension/chrome/updates.xml"
# Registry keys pour Edge
HKLM\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallForcelist
Value: "adlibo-endpoint;https://www.adlibo.com/extension/edge/updates.xml"DNS Filtering
Bloquez l'acces aux services IA au niveau DNS pour tous les appareils du réseau, y compris les appareils non-geres.
json
// POST /api/saas/endpoint/dns-config
{
"enabled": true,
"mode": "blocklist",
"blockedDomains": [
// OpenAI
"chat.openai.com",
"api.openai.com",
"platform.openai.com",
// Anthropic
"claude.ai",
"api.anthropic.com",
// Google
"bard.google.com",
"gemini.google.com",
// Other AI services
"perplexity.ai",
"you.com",
"poe.com",
"character.ai",
"midjourney.com",
"stability.ai"
],
"allowedDomains": [
// Exceptions pour services approuves
"chat.openai.com" // Si ChatGPT Enterprise approuve
],
"blockPage": {
"enabled": true,
"message": "Cet outil IA n'est pas approuve. Contactez IT pour plus d'informations.",
"contactEmail": "it@company.com"
},
"intégration": {
"type": "dns_forwarder", // dns_forwarder, proxy, firewall
"forwarders": ["10.0.0.53", "10.0.0.54"]
}
}Note importante
Le DNS filtering ne détecté pas l'utilisation d'API directement intégrées dans des applications. Combinez avec l'extension navigateur et le DLP pour une protection complete.
Dashboard de Monitoring
Suivez l'utilisation des outils IA et les tentatives bloquees depuis le dashboard Enterprise.
342
Extensions Active
1,247
AI Interactions Today
89
Blocked Attempts
23
DLP Warnings
json
// GET /api/saas/endpoint/stats
{
"period": "24h",
"endpoints": {
"total": 342,
"active": 298,
"offline": 44
},
"interactions": {
"total": 1247,
"byService": {
"chat.openai.com": 845,
"claude.ai": 312,
"gemini.google.com": 90
}
},
"blocked": {
"total": 89,
"byReason": {
"unapproved_service": 52,
"dlp_violation": 23,
"policy_violation": 14
}
},
"topUsers": [
{ "userId": "usr_123", "interactions": 145, "blocked": 3 },
{ "userId": "usr_456", "interactions": 98, "blocked": 0 }
]
}Catalogue des Services IA (70+ services)
Liste complete des services IA detectes par Adlibo Endpoint Shield avec leur statut de conformite, localisation des données et niveau de risque. Mise a jour en continu.
TousLLM ChatCode AssistantImage GenVideo GenAudio/VoiceSearchWritingEnterprise
| Service | Domaines | Categorie | Data Residency | GDPR | Statut |
|---|---|---|---|---|---|
| ChatGPT Enterprise | chat.openai.com, chatgpt.com | LLM Chat | US/EU | Approved | |
| ChatGPT Plus | chat.openai.com, chatgpt.com | LLM Chat | US | Review | |
| ChatGPT Free | chat.openai.com, chatgpt.com | LLM Chat | US | Blocked | |
| Claude for Work | claude.ai, api.anthropic.com | LLM Chat | US | Approved | |
| Claude Pro | claude.ai | LLM Chat | US | Review | |
| Claude Free | claude.ai | LLM Chat | US | Blocked | |
| Google Gemini Advanced | gemini.google.com, aistudio.google.com | LLM Chat | US/EU | Review | |
| Google Gemini Free | gemini.google.com, bard.google.com | LLM Chat | US | Blocked | |
| Microsoft Copilot Enterprise | copilot.microsoft.com, copilot.cloud.microsoft | LLM Chat | US/EU | Approved | |
| Microsoft Copilot Free | copilot.microsoft.com, bing.com/chat | LLM Chat | US | Blocked | |
| Meta AI | meta.ai, ai.meta.com | LLM Chat | US | Blocked | |
| Mistral Le Chat | chat.mistral.ai, mistral.ai | LLM Chat | FR/EU | Review | |
| Cohere | cohere.com, dashboard.cohere.com | LLM Chat | US/CA | Review | |
| Perplexity Pro | perplexity.ai | Search | US | Review | |
| Perplexity Free | perplexity.ai | Search | US | Blocked | |
| You.com | you.com | Search | US | Blocked | |
| Poe | poe.com | LLM Chat | US | Blocked | |
| Character.AI | character.ai, beta.character.ai | LLM Chat | US | Blocked | |
| Pi | pi.ai, heypi.com | LLM Chat | US | Blocked | |
| Groq | groq.com, console.groq.com | LLM Chat | US | Review | |
| Together AI | together.ai, api.together.xyz | LLM Chat | US | Review | |
| Replicate | replicate.com | LLM Chat | US | Review | |
| Hugging Face Chat | huggingface.co/chat | LLM Chat | US | Review | |
| DeepSeek | deepseek.com, chat.deepseek.com | LLM Chat | CN | Blocked | |
| Qwen (Alibaba) | qwenlm.ai, tongyi.aliyun.com | LLM Chat | CN | Blocked | |
| Baidu Ernie | yiyan.baidu.com | LLM Chat | CN | Blocked | |
| Moonshot (Kimi) | kimi.moonshot.cn, moonshot.cn | LLM Chat | CN | Blocked | |
| Zhipu AI | chatglm.cn, open.bigmodel.cn | LLM Chat | CN | Blocked | |
| GitHub Copilot Business | copilot.github.com, github.com/features/copilot | Code Assistant | US | Approved | |
| GitHub Copilot Individual | copilot.github.com | Code Assistant | US | Review | |
| Amazon CodeWhisperer | aws.amazon.com/codewhisperer | Code Assistant | US | Approved | |
| Cursor | cursor.sh, cursor.com | Code Assistant | US | Review | |
| Codeium | codeium.com | Code Assistant | US | Review | |
| Tabnine | tabnine.com | Code Assistant | US/IL | Review | |
| Sourcegraph Cody | sourcegraph.com | Code Assistant | US | Review | |
| Replit AI | replit.com | Code Assistant | US | Blocked | |
| Windsurf | windsurf.ai, codeium.com/windsurf | Code Assistant | US | Review | |
| DALL-E 3 (API) | api.openai.com | Image Gen | US | Review | |
| Midjourney | midjourney.com, discord.com/midjourney | Image Gen | US | Blocked | |
| Stable Diffusion (Stability) | stability.ai, dreamstudio.ai | Image Gen | UK | Review | |
| Leonardo.AI | leonardo.ai, app.leonardo.ai | Image Gen | AU | Blocked | |
| Adobe Firefly | firefly.adobe.com | Image Gen | US | Approved | |
| Canva AI | canva.com | Image Gen | AU | Review | |
| Ideogram | ideogram.ai | Image Gen | US | Blocked | |
| Flux (Black Forest) | blackforestlabs.ai | Image Gen | DE | Review | |
| Craiyon | craiyon.com | Image Gen | US | Blocked | |
| Runway | runwayml.com, app.runwayml.com | Video Gen | US | Blocked | |
| Pika Labs | pika.art | Video Gen | US | Blocked | |
| Sora (OpenAI) | openai.com/sora | Video Gen | US | Blocked | |
| Synthesia | synthesia.io | Video Gen | UK/EU | Review | |
| HeyGen | heygen.com | Video Gen | US | Blocked | |
| D-ID | d-id.com | Video Gen | IL | Review | |
| Luma AI | lumalabs.ai | Video Gen | US | Blocked | |
| ElevenLabs | elevenlabs.io | Audio/Voice | US | Blocked | |
| Murf.AI | murf.ai | Audio/Voice | US | Review | |
| Descript | descript.com | Audio/Voice | US | Review | |
| Otter.ai | otter.ai | Audio/Voice | US | Review | |
| Assembly AI | assemblyai.com | Audio/Voice | US | Review | |
| Speechify | speechify.com | Audio/Voice | US | Blocked | |
| Play.ht | play.ht | Audio/Voice | US | Blocked | |
| Suno AI | suno.ai, app.suno.ai | Audio/Voice | US | Blocked | |
| Udio | udio.com | Audio/Voice | US | Blocked | |
| Jasper | jasper.ai | Writing | US | Review | |
| Copy.ai | copy.ai | Writing | US | Blocked | |
| Writesonic | writesonic.com | Writing | US | Blocked | |
| Grammarly AI | grammarly.com | Writing | US | Review | |
| QuillBot | quillbot.com | Writing | US | Blocked | |
| Notion AI | notion.so | Writing | US | Review | |
| Mem AI | mem.ai | Writing | US | Blocked | |
| AWS Bedrock | aws.amazon.com/bedrock | Enterprise | Multi | Approved | |
| Azure OpenAI | azure.microsoft.com, oai.azure.com | Enterprise | Multi | Approved | |
| Google Vertex AI | cloud.google.com/vertex-ai | Enterprise | Multi | Approved | |
| IBM Watson | ibm.com/watson | Enterprise | Multi | Approved | |
| Salesforce Einstein | einstein.ai, salesforce.com/einstein | Enterprise | US/EU | Approved |
Legende des statuts
ApprovedService valide pour usage professionnel
ReviewEn cours d'évaluation
BlockedNon conforme, acces bloqué
API Référence
Endpoints disponibles pour l'intégration Endpoint Shield. Authentification via device token ou API key.
POST
/api/v1/endpoint/registerEnregistrement d'un nouvel appareil
POST
/api/v1/endpoint/enrollEnrollment via lien d'inscription
POST
/api/v1/endpoint/bind-userAssociation utilisateur ↔ appareil
POST
/api/v1/endpoint/heartbeatHeartbeat + envoi statistiques
GET
/api/v1/endpoint/configRécupération politiques DLP et config
POST
/api/v1/endpoint/alertSignalement alerte DLP
POST
/api/v1/endpoint/logEnvoi logs d'activité
POST
/api/v1/endpoint/license/validateValidation clé de licence
Dashboard APIs (requérant session auth)
GET /api/dashboard/endpoint — Stats, appareils, licences
GET/POST/PATCH /api/dashboard/endpoint/policies — Gestion des politiques DLP
GET/POST /api/dashboard/endpoint/enrollment — Liens d'enrollment
GET/POST /api/dashboard/endpoint/settings — Paramètres organisation
Documentation Associee
Besoin d'aide avec le déploiement Endpoint ?
Notre équipe peut vous accompagner dans le déploiement et la configuration des politiques.