Automatically create a reference system whitelist policy
What's covered
Create a Reference System Whitelist Policy
This document shows you how to automatically create a whitelist policy for your reference system that targets a collection of computers, searches for Windows executables, and then adds any Windows executables to a whitelist.
Create a resource target
First you will need to create a resource target that contains the desired reference system(s). To create a resource target, do the following steps:
- In the Thycotic Security Manager, click the Resources tab.
- In the left pane, click Resource Filters.
- Navigate to Resource Filters > Resource Targets.
- Right-click User Defined Targets and then click New > Resource Target.
- Enter a name and description.
- Click OK.
- In the right pane under Filtering Rules, click the Add rule button.
- In the Then menu, "excludes computers not in" will be the default.
- In the menu just to the right of the Then menu, choose Computer List.
- Then click Select.
- In the Select Item window that opens, click the computer resources that represent your reference system(s) and move them into the Selected Resources field.
- Click OK.
Create a reference system whitelist policy
Now that you have your targeting established you can create a file reference system whitelist policy automatically.
- In the Thycotic Security Manager, click the Policies tab.
- In the left pane, navigate to the Thycotic Solutions > Application Control > Policies > Whitelisting folder.
- Right-click the Whitelisting folder and click New > Reference System Policy.
- In the Create Item dialog box, fill in the Name and Description fields.
- Click the Select link next to Reference System(s).
- In the Select Items dialog box, click the resource target(s) you created previously.
- Move the resource target(s).
- Click OK.
- In the Create Item dialog box, click OK.
By clicking OK you are creating the following items:
- File scan policy
- File scan results filter
- Reference System Policy
For details about these three items, go to Manually create a reference system whitelist policy.