Versions Compared

Old Version 8

changes.mady.by.user Max Pinion

Saved on

compared with

New Version 9

changes.mady.by.user Max Pinion

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1.  On the Home page of the Arellia Security Manager console, click the Create Application Control Policy button in the Actions section in the middle left of the page.
  2. In the Application Control Policy Wizard, click Elevate Privileges, Reduce Privileges, or Deny Applications
  3. Click Next.
     

 

Elevate Privileges

After you choose Elevate Privileges, click one of the five options for applications to elevate.

  • Application (by name) - Allows a specific application to be elevated. The application can be defined by Filename, Internal name, Product name, or Path.
  • Script - Allows a specified script by path to be elevated.
  • Shared Location - Allows all applications in a specified UNC Share to be elevated.
  • Signed Executables - Allows applications with a specified digital certificate to be elevated.
  • System Options - Allows several system options to be elevated depending on what is selected to be elevated.
    • Add devices, add printers, backup the system, change the date and time, change network adapter settings, defragment the disk, install language packs, and monitor performance can all be elevated from the wizard.

After selecting what to elevate, the target of the policy can also be defined. After the wizard exits, it will take you to the new policy.

Reduce Privileges

After selecting Reduce Privileges, there are 3 options for applications to limit.

  • Application (by name) - Allows a specific application to be limited. The application can be defined by Filename, Internal name, Product name, or Path. It can also have a special message that will appear to the user whenever the application is run.
  • Application (by filter) - Allows a specific filter to be used to limit certain applications. A user message can also be specified.
  • Common Web Browsers - Specified browsers will have their rights reduced. A user message can also be specified.

After selecting what to limit, the target of the policy can also be defined. After the wizard exits, it will take you to the new policy.

Deny Applications

After selecting Deny Applications, you can select what applications to deny by using predefined or creating new filters. An optional user message can also be specified. After selecting what to deny, the target of the policy can also be defined. After the wizard exits, it will take you to the new policy.