Protect against Internet Applications

Application Control Solution can deny certain processes access to internet-protected resources such as files, folders, domain resources, and spawning additional applications. 

First decide what application(s) you'd like to classify as "Internet Applications" (for example, Internet Explorer).

To set up internet applications, do the following steps:

1. In the Security Manager Console, click the Policies tab.
2. In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Actions > Application Classifications.
3. Right-click Application Classifications and click New > Application Classification.
    
4. Set the name and Application Classification to "InternetApp."
   
5. In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Policies.
6. Right-click Policies and select New > Blank Application Control Policy.
    
7. Set the Applications to control to the applications chosen in step 1.
   
8. Then select the Application Actions tab and set the action to the InternetApp Classification Action from step 3.
   
9. Click Save.

As soon as the policy is downloaded by an endpoint, the targeted application(s) will have an additional process token set to "Application Classification\InternetApp." You can then create additional application control policies to target that token and deny the process from creating new processes, or you can set ACLS on folders and files to deny the targeted application(s) from having access. 

Related Links

Orangelisting