Auto-elevate Applications from Approved Websites
Application Control Solution can target applications based on where they were downloaded from (go to Download Source Filter), which means that you can now allow standard users to install signed software from approved websites.
Feature introduced in Arellia 8.0
Allow standard users to install signed software from approved websites by doing the following steps:
- In the Security Manager Console, click the Policies tab.
- In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Filters > My Filters.
- Right-click on My Filters and click New > Dynamic File Filters > Download Source Filter.
- Name the new filter and set the host information. For example:
- If you want to target all of adobe.com and all sub-domains of adobe.com, then use a partial match type for adobe.com.
- You can also target a specific sub-domain and directory of a website, such as ftp.hp.com/pub/softpaq/.
- Click Save.
- In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Policies.
- Right-click Policies and click New > Elevate Process Rights.
- Set the targeted applications to the new download source filter created in step 2.
- For additional security, Arellia recommends that you also include a Signed File Filter that uses trusted certificate(s) from that domain.
This policy will now automatically elevate applications downloaded from adobe.com and signed by the current Adobe certificate.