Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 36 Next »

Creating an Application Control Policy

Application Control policies determine whether certain actions run before an end user can run an application. For example, a policy might deny an application the ability to execute or quarantine the application when a user attempts to run the application. The easiest way to create these policies is to use the Application Control Wizard.

To create an Application Control policy:

  • Once you are in Arellia > Application Control select the Policies tab
  • Select Application Control Policies

 

You can choose from the following policies:

  • Allow Microsoft Installer Policy
  • Allow Whitelist Execution
  • Deny Blacklist Execution
  • Limit Internet Browser and Mail Client Process Rights
  • Limit Popular Instant Messaging Application Process Rights
  • Limit Popular Media Player Process Rights
  • Limit Process Rights for Unclassified Applications Discovered in the Last Week

Or you can create a new Application Control Policy by right-clicking on Application Control Policies and choosing which type of policy you want to create. 

Note

For descriptions of these Application Control policies, see Overview


The Application Control Wizard opens in a new window. The following steps take you through the wizard.

Step 1 - Welcome to the Application Control Wizard

Select the computers and applications you want to target with this policy.

  • To select the application that you want to target with this policy, click Select an Item next to Application:
  • In the Select Items dialog, select a collection and click OK.  You can select multiple filters if you want. 
  • To include filters in the policy, click Select an Item next to Include:
  • In the Select Items dialog, select an application filter from the available items
  • To exclude filters in the policy, click Select an Item next to Exclude: and follow the procedure in Step 4 above.
Step 2 - Select Actions

In this step, you select actions to apply to an application and its processes. You can also select application action reporting options.

To add an action to the policy

  • Next to Application Actions, click Select an Item.
  • In the Items Selector dialog, select an application action from the Available items and Save changes.

To add your own application action:

  • In the left pane,right-click on the action type you would like to create and select New > item type.
  • Select the new item you have created.
  • In the right-pane, enter a name, description and other necessary info for that action.
    For details on what you can configure for each action, see Application Actions.

To add an action to any Child Process select:

  • Same as Above - Apply the application action to any child process.
  • Use Different Action - Choose Click to select, select an application in the Select Items dialog, and Save changes.
  • (Optional) Click Send the Notification Server an event if these actions are applied.
  • Save changes.

(Optional) To Add extra Application Actions (You can add as many application actions to a policy as you want.)

  • Select an application action by choosing Click to select 
  • Choose the new action from the list of choices and add it to your policy.
  • Save changes.  Your policy now contains two application actions.
Step 3 - Policy Enforcement

Enter general policy details and enforcement options.

  • Enable the policy using the On/Off toggle.
  • Enter a policy name and description in the fields provided.
  • Select your policy enforcement options:
    • Policy Priority - Enter a policy priority to determine its order in relation to other policies.
    • Continue enforcing policies after enforcing this policy - Continues enforcing lower priority policies after enforcing this policy.
    • Continue enforcing policies for child processes after enforcing this policy - Continues enforcing lower priority policies for child processes after enforcing this policy.
    •  Stage 2 Processing
  • Save changes.
  • No labels