Anchor | ||||
---|---|---|---|---|
|
Create a Reference System Whitelist Policy
...
This document shows you how to automatically create a whitelist policy for your reference system that targets a collection of computers, searches for Windows executables, and then adds any Windows executables to a whitelist.
Anchor | ||||
---|---|---|---|---|
|
Install the Application Control – Reference System Template data feed. For instructions on how to install data feeds, go to Using Data Feeds.
Anchor | ||||
---|---|---|---|---|
|
...
- In the Security Manager Console, click the Resources tab.
- In the left pane, click Resource Filters.
- Right-click the Resource Target folder.
- Click New > Resource Targets > Resource Target.
- Enter a name and description.
- Click OK.
- In the right pane under Filtering Rules, click the Add rule button.
- In the Then menu, "excludes computers not in" will be the default.
- In the menu just to the right of the Then menu, choose Computer List.
- Then click Select.
- In the Select Item window that opens, click the computer resources that represent your reference system(s).
- Click OK.
Anchor | ||||
---|---|---|---|---|
|
...
- In the Security Manager Console, click the Policies tab.
- In the left pane, navigate to the Arellia Solutions > Application Control > Policies > Whitelist folder.
- Right-click the Whitelist folder and click New > Reference System WhitelistPolicy.
- In the Create Item dialog box, fill in the Name and Description fields.
- Specify the previously created Click the Select link next to Reference System target under Reference System(s).
- In the Select Items dialog box, click the resource target you created previously.
- Click OK.
...
- In the Create Item dialog box, click OK.
By clicking OK you are creating the following items:
- File scan policy
- File scan results filter
- Reference System Policy
For details about these three items, go to Manually Create a Reference System Whitelist Policy.