Deny Mode

Deny mode means that on all monitored stations, only applications that comply with the deny rules are prohibited to run. All other applications are allowed.

Deny rules can be configured under the Deny mode tab in profile properties.

To use deny mode

1.Set the Use deny mode flag on the Deny modetab.

2.Create deny rules as given below.

3.Click Save.

warning

If no deny rules are specified, the deny mode will be disabled.

To create a new deny rule

1.In the Deny rules section, click icon-new-add Create rule on the toolbar.

2.In Adding rule windows, specify Rule name and click Save.

3.In the rule list, select created rule and specify its settings on the opened properties pane:

a)Set the Enable rule flag to start using this rule.

b)If you want to check the rule operation, set the Switch rule to test mode flag. Applications will not be controlled at stations, but the activity log will be written as for enabled settings. Application launch and block results based on a rule in test mode will be displayed in the Application Control Events section.
If the Switch rule to test mode flag is cleared, the rule operates in active mode and blocks applications at stations by specified rule settings (see also modes of profiles operation).

c)In the Prohibit the launch of applications on the following criteria section, select options according to which the applications launch at stations will be prohibited.

info

In the File name filed, specify a file or a directory. System variables and wildcards are allowed. If the value of the parameter is not a path, it is treated as a file with the specified name in any directory.

info

Also you can create deny rules from the Application Control events and Application catalog sections basing on the data received from stations. At this, application parameters in the rule settings will be filled automatically according to the selected application.

4.Click Save.

To create a duplicate of deny rule

1.In the Deny rules section, in the rules table, select the rule you want to duplicate for this profile.

2.Click icon-duplicate-new Duplicate rule on the toolbar.

3.The new rule will appear in the rules table; its settings will be completely copied from the rule selected on step 1. The number 1 is added to the rule name.

To delete a deny rule

1.In the Deny rules section, in the rules table, select the rule you want to remove from this profile.

2.Click icon-new-delete Delete rule on the toolbar.