ENTERPRISEPlan ENTERPRISE
Endpoint Protection
Protection des postes de travail et navigateurs contre les interactions non-autorisees avec les outils IA.
Fonctionnalites Cles
Browser Extension
Extension Chrome/Edge/Firefox pour controler l'acces aux outils IA.
MDM Integration
Deploiement centralise via Intune, JAMF, ou autre MDM.
DNS Filtering
Blocage au niveau DNS des domaines IA non-approuves.
Policy Engine
Regles granulaires par utilisateur, groupe, ou departement.
Extension Navigateur
L'extension Adlibo protege les utilisateurs contre l'utilisation non-autorisee d'outils IA et previent les fuites de donnees.
Chrome
DisponibleEdge
DisponibleFirefox
BetaFonctionnalites
Blocage des sites IA non-approuves (ChatGPT, Claude, Gemini, etc.)
Detection du copy/paste de donnees sensibles
Avertissement avant soumission de donnees confidentielles
Logging des interactions pour audit
Mode "Approved Only" ou "Block List"
Integration DLP temps reel
Configuration des Politiques
json
// POST /api/saas/endpoint/policies
{
"name": "Default AI Policy",
"scope": {
"type": "organization", // organization, group, user
"targets": ["org_abc123"]
},
"rules": {
"aiServices": {
"mode": "allowlist", // allowlist, blocklist
"allowed": [
{
"domain": "chat.openai.com",
"name": "ChatGPT Enterprise",
"conditions": {
"requireDlp": true,
"maxInputLength": 5000
}
},
{
"domain": "claude.ai",
"name": "Claude for Work",
"conditions": {
"requireDlp": true,
"allowedDomains": ["PERSONAL", "CORPORATE"]
}
}
],
"blocked": [
{ "domain": "*.openai.com", "except": ["chat.openai.com"] },
{ "domain": "bard.google.com" },
{ "domain": "perplexity.ai" }
]
},
"dataProtection": {
"blockCopyPaste": {
"enabled": true,
"patterns": ["CREDIT_CARD", "SSN", "API_KEY", "PASSWORD"]
},
"warnBeforeSubmit": {
"enabled": true,
"threshold": 50 // Risk score threshold
},
"preventScreenshot": false
},
"logging": {
"logAllInteractions": true,
"logBlockedAttempts": true,
"retentionDays": 90
}
},
"enforcement": "block", // block, warn, log
"enabled": true
}Deploiement MDM
Microsoft Intune
powershell
# PowerShell - Deploiement via Intune
$extensionId = "adlibo-endpoint-protection"
$policyId = "pol_abc123"
# Configuration Chrome
$chromeConfig = @{
"ExtensionSettings" = @{
$extensionId = @{
"installation_mode" = "force_installed"
"update_url" = "https://www.adlibo.com/extension/chrome/updates.xml"
}
}
}
# Configuration Edge
$edgeConfig = @{
"ExtensionSettings" = @{
$extensionId = @{
"installation_mode" = "force_installed"
"update_url" = "https://www.adlibo.com/extension/edge/updates.xml"
}
}
}JAMF (macOS)
xml
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN">
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>ExtensionInstallForcelist</key>
<array>
<string>adlibo-endpoint;https://www.adlibo.com/extension/chrome/updates.xml</string>
</array>
<key>PayloadType</key>
<string>com.google.Chrome</string>
</dict>
</array>
</dict>
</plist>Group Policy (GPO)
text
# Registry keys pour Chrome
HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist
Value: "adlibo-endpoint;https://www.adlibo.com/extension/chrome/updates.xml"
# Registry keys pour Edge
HKLM\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallForcelist
Value: "adlibo-endpoint;https://www.adlibo.com/extension/edge/updates.xml"DNS Filtering
Bloquez l'acces aux services IA au niveau DNS pour tous les appareils du reseau, y compris les appareils non-geres.
json
// POST /api/saas/endpoint/dns-config
{
"enabled": true,
"mode": "blocklist",
"blockedDomains": [
// OpenAI
"chat.openai.com",
"api.openai.com",
"platform.openai.com",
// Anthropic
"claude.ai",
"api.anthropic.com",
// Google
"bard.google.com",
"gemini.google.com",
// Other AI services
"perplexity.ai",
"you.com",
"poe.com",
"character.ai",
"midjourney.com",
"stability.ai"
],
"allowedDomains": [
// Exceptions pour services approuves
"chat.openai.com" // Si ChatGPT Enterprise approuve
],
"blockPage": {
"enabled": true,
"message": "Cet outil IA n'est pas approuve. Contactez IT pour plus d'informations.",
"contactEmail": "it@company.com"
},
"integration": {
"type": "dns_forwarder", // dns_forwarder, proxy, firewall
"forwarders": ["10.0.0.53", "10.0.0.54"]
}
}Note importante
Le DNS filtering ne detecte pas l'utilisation d'API directement integrees dans des applications. Combinez avec l'extension navigateur et le DLP pour une protection complete.
Dashboard de Monitoring
Suivez l'utilisation des outils IA et les tentatives bloquees depuis le dashboard Enterprise.
342
Extensions Active
1,247
AI Interactions Today
89
Blocked Attempts
23
DLP Warnings
json
// GET /api/saas/endpoint/stats
{
"period": "24h",
"endpoints": {
"total": 342,
"active": 298,
"offline": 44
},
"interactions": {
"total": 1247,
"byService": {
"chat.openai.com": 845,
"claude.ai": 312,
"gemini.google.com": 90
}
},
"blocked": {
"total": 89,
"byReason": {
"unapproved_service": 52,
"dlp_violation": 23,
"policy_violation": 14
}
},
"topUsers": [
{ "userId": "usr_123", "interactions": 145, "blocked": 3 },
{ "userId": "usr_456", "interactions": 98, "blocked": 0 }
]
}Catalogue des Services IA (70+ services)
Liste complete des services IA detectes par Adlibo Endpoint Shield avec leur statut de conformite, localisation des donnees et niveau de risque. Mise a jour en continu.
TousLLM ChatCode AssistantImage GenVideo GenAudio/VoiceSearchWritingEnterprise
| Service | Domaines | Categorie | Data Residency | GDPR | Statut |
|---|---|---|---|---|---|
| ChatGPT Enterprise | chat.openai.com, chatgpt.com | LLM Chat | US/EU | Approved | |
| ChatGPT Plus | chat.openai.com, chatgpt.com | LLM Chat | US | Review | |
| ChatGPT Free | chat.openai.com, chatgpt.com | LLM Chat | US | Blocked | |
| Claude for Work | claude.ai, api.anthropic.com | LLM Chat | US | Approved | |
| Claude Pro | claude.ai | LLM Chat | US | Review | |
| Claude Free | claude.ai | LLM Chat | US | Blocked | |
| Google Gemini Advanced | gemini.google.com, aistudio.google.com | LLM Chat | US/EU | Review | |
| Google Gemini Free | gemini.google.com, bard.google.com | LLM Chat | US | Blocked | |
| Microsoft Copilot Enterprise | copilot.microsoft.com, copilot.cloud.microsoft | LLM Chat | US/EU | Approved | |
| Microsoft Copilot Free | copilot.microsoft.com, bing.com/chat | LLM Chat | US | Blocked | |
| Meta AI | meta.ai, ai.meta.com | LLM Chat | US | Blocked | |
| Mistral Le Chat | chat.mistral.ai, mistral.ai | LLM Chat | FR/EU | Review | |
| Cohere | cohere.com, dashboard.cohere.com | LLM Chat | US/CA | Review | |
| Perplexity Pro | perplexity.ai | Search | US | Review | |
| Perplexity Free | perplexity.ai | Search | US | Blocked | |
| You.com | you.com | Search | US | Blocked | |
| Poe | poe.com | LLM Chat | US | Blocked | |
| Character.AI | character.ai, beta.character.ai | LLM Chat | US | Blocked | |
| Pi | pi.ai, heypi.com | LLM Chat | US | Blocked | |
| Groq | groq.com, console.groq.com | LLM Chat | US | Review | |
| Together AI | together.ai, api.together.xyz | LLM Chat | US | Review | |
| Replicate | replicate.com | LLM Chat | US | Review | |
| Hugging Face Chat | huggingface.co/chat | LLM Chat | US | Review | |
| DeepSeek | deepseek.com, chat.deepseek.com | LLM Chat | CN | Blocked | |
| Qwen (Alibaba) | qwenlm.ai, tongyi.aliyun.com | LLM Chat | CN | Blocked | |
| Baidu Ernie | yiyan.baidu.com | LLM Chat | CN | Blocked | |
| Moonshot (Kimi) | kimi.moonshot.cn, moonshot.cn | LLM Chat | CN | Blocked | |
| Zhipu AI | chatglm.cn, open.bigmodel.cn | LLM Chat | CN | Blocked | |
| GitHub Copilot Business | copilot.github.com, github.com/features/copilot | Code Assistant | US | Approved | |
| GitHub Copilot Individual | copilot.github.com | Code Assistant | US | Review | |
| Amazon CodeWhisperer | aws.amazon.com/codewhisperer | Code Assistant | US | Approved | |
| Cursor | cursor.sh, cursor.com | Code Assistant | US | Review | |
| Codeium | codeium.com | Code Assistant | US | Review | |
| Tabnine | tabnine.com | Code Assistant | US/IL | Review | |
| Sourcegraph Cody | sourcegraph.com | Code Assistant | US | Review | |
| Replit AI | replit.com | Code Assistant | US | Blocked | |
| Windsurf | windsurf.ai, codeium.com/windsurf | Code Assistant | US | Review | |
| DALL-E 3 (API) | api.openai.com | Image Gen | US | Review | |
| Midjourney | midjourney.com, discord.com/midjourney | Image Gen | US | Blocked | |
| Stable Diffusion (Stability) | stability.ai, dreamstudio.ai | Image Gen | UK | Review | |
| Leonardo.AI | leonardo.ai, app.leonardo.ai | Image Gen | AU | Blocked | |
| Adobe Firefly | firefly.adobe.com | Image Gen | US | Approved | |
| Canva AI | canva.com | Image Gen | AU | Review | |
| Ideogram | ideogram.ai | Image Gen | US | Blocked | |
| Flux (Black Forest) | blackforestlabs.ai | Image Gen | DE | Review | |
| Craiyon | craiyon.com | Image Gen | US | Blocked | |
| Runway | runwayml.com, app.runwayml.com | Video Gen | US | Blocked | |
| Pika Labs | pika.art | Video Gen | US | Blocked | |
| Sora (OpenAI) | openai.com/sora | Video Gen | US | Blocked | |
| Synthesia | synthesia.io | Video Gen | UK/EU | Review | |
| HeyGen | heygen.com | Video Gen | US | Blocked | |
| D-ID | d-id.com | Video Gen | IL | Review | |
| Luma AI | lumalabs.ai | Video Gen | US | Blocked | |
| ElevenLabs | elevenlabs.io | Audio/Voice | US | Blocked | |
| Murf.AI | murf.ai | Audio/Voice | US | Review | |
| Descript | descript.com | Audio/Voice | US | Review | |
| Otter.ai | otter.ai | Audio/Voice | US | Review | |
| Assembly AI | assemblyai.com | Audio/Voice | US | Review | |
| Speechify | speechify.com | Audio/Voice | US | Blocked | |
| Play.ht | play.ht | Audio/Voice | US | Blocked | |
| Suno AI | suno.ai, app.suno.ai | Audio/Voice | US | Blocked | |
| Udio | udio.com | Audio/Voice | US | Blocked | |
| Jasper | jasper.ai | Writing | US | Review | |
| Copy.ai | copy.ai | Writing | US | Blocked | |
| Writesonic | writesonic.com | Writing | US | Blocked | |
| Grammarly AI | grammarly.com | Writing | US | Review | |
| QuillBot | quillbot.com | Writing | US | Blocked | |
| Notion AI | notion.so | Writing | US | Review | |
| Mem AI | mem.ai | Writing | US | Blocked | |
| AWS Bedrock | aws.amazon.com/bedrock | Enterprise | Multi | Approved | |
| Azure OpenAI | azure.microsoft.com, oai.azure.com | Enterprise | Multi | Approved | |
| Google Vertex AI | cloud.google.com/vertex-ai | Enterprise | Multi | Approved | |
| IBM Watson | ibm.com/watson | Enterprise | Multi | Approved | |
| Salesforce Einstein | einstein.ai, salesforce.com/einstein | Enterprise | US/EU | Approved |
Legende des statuts
ApprovedService valide pour usage professionnel
ReviewEn cours d'evaluation
BlockedNon conforme, acces bloque
API Reference
Endpoints disponibles pour l'intégration Endpoint Shield. Authentification via device token ou API key.
POST
/api/v1/endpoint/registerEnregistrement d'un nouvel appareil
POST
/api/v1/endpoint/enrollEnrollment via lien d'inscription
POST
/api/v1/endpoint/bind-userAssociation utilisateur ↔ appareil
POST
/api/v1/endpoint/heartbeatHeartbeat + envoi statistiques
GET
/api/v1/endpoint/configRécupération politiques DLP et config
POST
/api/v1/endpoint/alertSignalement alerte DLP
POST
/api/v1/endpoint/logEnvoi logs d'activité
POST
/api/v1/endpoint/license/validateValidation clé de licence
Dashboard APIs (requérant session auth)
GET /api/dashboard/endpoint — Stats, appareils, licences
GET/POST/PATCH /api/dashboard/endpoint/policies — Gestion des politiques DLP
GET/POST /api/dashboard/endpoint/enrollment — Liens d'enrollment
GET/POST /api/dashboard/endpoint/settings — Paramètres organisation
Documentation Associee
Besoin d'aide avec le deploiement Endpoint ?
Notre equipe peut vous accompagner dans le deploiement et la configuration des politiques.