Automatically create a reference system whitelist policy

What's covered

Create a Resource Target

Create a Reference System Whitelist Policy

 

This document shows you how to automatically create a whitelist policy for your reference system that targets a collection of computers, searches for Windows executables, and then adds any Windows executables to a whitelist.

Create a resource target

First you will need to create a resource target that contains the desired reference system(s). To create a resource target, do the following steps:

  1. In the Thycotic Security Manager, click the Resources tab.
  2. In the left pane, click Resource Filters.

     
     
  3. Navigate to Resource Filters > Resource Targets.
  4. Right-click User Defined Targets and then click New > Resource Target.
  5. Enter a name and description.
  6. Click OK.



  7. In the right pane under Filtering Rules, click the Add rule button.
  8. In the Then menu, "excludes computers not in" will be the default. 
  9. In the menu just to the right of the Then menu, choose Computer List.
  10. Then click Select.
  11. In the Select Item window that opens, click the computer resources that represent your reference system(s) and move them into the Selected Resources field.
  12. Click OK.




top

Create a reference system whitelist policy

Now that you have your targeting established you can create a file reference system whitelist policy automatically.

  1. In the Thycotic Security Manager, click the Policies tab.
  2. In the left pane, navigate to the Thycotic Solutions > Application Control > Policies > Whitelisting folder.
  3. Right-click the Whitelisting folder and click New > Reference System Policy.
  4. In the Create Item dialog box, fill in the Name and Description fields.
  5. Click the Select link next to Reference System(s).



  6. In the Select Items dialog box, click the resource target(s) you created previously.
  7. Move the resource target(s).
  8. Click OK.


     
  9. In the Create Item dialog box, click OK.

top

By clicking OK you are creating the following items:

  • File scan policy
  • File scan results filter
  • Reference System Policy

For details about these three items, go to Manually create a reference system whitelist policy.

Whitelisting