Arellia can connect and scan software delivery packages for applications to whitelist using the Arellia Application Control Solution.
You can scan software delivery packages on one of the following systems:
After you have scanned software delivery packages, you can then whitelist them by doing the following steps:
- Import the "Application Control - Package Whitelisting" data feed (for instructions on how to import data feeds, go to Using Data Feeds).
- Then navigate to Policies > Arellia Solutions > Application Control > Policies > Whitelisting.
- Right-click the Whitelisting folder and click New > Whitelist Software Delivery Packages.
- Name the policy.
- Select all of the packages that will be included in this policy.
- Create a description.
- Click OK.
- The package filters will appear in the Application Control > Filters > Inventory Filters > Package Filters folder as shown in the following screenshot.
- If the package filter is empty, you can run the Collection Update task under Tasks > Infrastructure Scheduled Activities to update the filter collections.
If the contents of a package change, you'll need to run either the Inventory Package or Inventory Packages task (under Tasks > Server Tasks > File Inventory).
Manual Steps
After the packages have been scanned, the following steps can be used to whitelist the contents of those software delivery packages.
- Navigate to Policies > Arellia Solutions > Application Control > Filters > Inventory Filters
- Right-click Inventory Filters and select New > MSI Package Contents Filter
- Name the filter and then select a software delivery package to include in the filter
- Save the filter
- This filter can then be used as a target in Application Control Policies
If the filter does not list any executables, then the File Inventory command needs to be executed on that package. Navigate to Tasks > Server Tasks > File Inventory and schedule the Inventory Packages command to run on that package.