Automatically Create a Reference System Whitelist Policy
What's Covered
Create a Reference System Whitelist Policy
This document shows you how to automatically create a whitelist policy for your reference system that targets a collection of computers, searches for Windows executables, and then adds any Windows executables to a whitelist.
Create a Resource Target
First you will need to create a resource target that contains the desired reference system(s). To create a resource target, do the following steps:
- In the Security Manager Console, click the Resources tab.
- In the left pane, click Resource Filters.
- Right-click the Resource Targets folder.
- Click New > Resource Target.
- Enter a name and description.
- Click OK.
- In the right pane under Filtering Rules, click the Add rule button.
- In the Then menu, "excludes computers not in" will be the default.
- In the menu just to the right of the Then menu, choose Computer List.
- Then click Select.
- In the Select Item window that opens, click the computer resources that represent your reference system(s).
- Click OK.
Create a Reference System Whitelist Policy
Now that you have your targeting established you can create a file reference system whitelist policy automatically.
- In the Security Manager Console, click the Policies tab.
- In the left pane, navigate to the Arellia Solutions > Application Control > Policies > Whitelist folder.
- Right-click the Whitelist folder and click New > Reference System Policy.
- In the Create Item dialog box, fill in the Name and Description fields.
- Click the Select link next to Reference System(s).
- In the Select Items dialog box, click the resource target(s) you created previously.
- Move the resource target(s)
- Click OK.
- In the Create Item dialog box, click OK.
By clicking OK you are creating the following items:
- File scan policy
- File scan results filter
- Reference System Policy
For details about these three items, go to Manually Create a Reference System Whitelist Policy.