Profiles |
Profiles define the Application Control settings, which specify whether applications, modules, script interpreters, drivers and MSI packages on stations will be launched or blocked. Profiles are created by the administrator and are assigned to policies, stations and users, as well as groups of stations or users. Profiles define the Application Control operation mode. Profiles are configured via the anti-virus network tree: •All profiles are located in the preinstalled group. •Objects with assigned profile are placed nested under this profile in the anti-virus network tree. To configure Application Control 2.Configure settings of the created profile. 3.Assign the created profile to necessary objects.
Possible operation modes for profiles: •—profile is not active, profile settings are not applied. •—profile is active, settings are applied for objects on which the profile is propagated. • global—profile is active but operates in global test mode. This test mode imitates operation of Application Control with full activity logging (see Application Control Events), but no application is getting blocked. • for rules—profile is active and both functional analysis settings and rules are propagated to objects. However the rules switched to test mode have no impact on applications being blocked. Results of their imitated actions are kept in the activity log (see Application Control Events). The test mode can be enabled or disabled in allow and deny rule settings. The table below illustrates which options are responsible for specific profile operation mode.
|