Arellia Application Control Solution targets applications based on where they were downloaded from so that you can choose to allow standard users to install signed software from approved websites.
To set up a Download Source Filter, do the following steps:
- In the Security Manager Console, click Policies.
- In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Filters > My Filters.
- Right-click the My Filters folder and click New > Dynamic File Filters > Download Source Filter.
- In the Create Item dialog box, enter the Name and Description.
- In the right pane, click the following settings:
- If you want to target all of adobe.com and all sub-domains of adobe.com, then in the Match Type menu choose Partial.
- You can also target a specific sub-domain and directory of a website, such as ftp.hp.com/pub/softpaq/
- Save the filter
- Navigate to Policies > Arellia Solutions > Application Control > Policies
- Right-click Policies and select New > Elevate Process Rights
- Set the applications the policy should target to the new download source filter created in step 2.
- For additional security, Arellia recommends that you also include a Signed File Filter that uses trusted certificate(s) from that domain
This policy will now automatically elevate applications downloaded from adobe.com and signed by the current Adobe certificate.