Application Control
The Application Control module adds another layer of protection against a wide range of malware threats (ransomware, zero-day attacks, exploits on third party applications, Trojans, spyware, rootkits, adware and so on) by blocking unauthorized applications and processes from running through its content scanning capabilities.
Note
This module is available for:
Windows for workstations
Windows for servers
Application Control enforces flexible policies that allow you to whitelist applications and manage the update permissions.
Component
Network Protection is dependent on the following components:
GravityZone virtual appliance
Security agent (Bitdefender Endpoint Security Tools installed on Windows, Linux, & Mac endpoints)
Install and configure Application Control
To start using this feature, follow the steps below:
Policies are used to enable and configure features both on endpoints and in terms of general functionality.
GravityZone comes with a default set of policy settings, that are custom tailored to meet the most common customer needs.
You can use these default policy settings and leave the configuration of the policy for a later date, but you need to follow the steps below to enable the feature from the policy page:
Log in to GravityZone Control Center.
Go to the Policies page from the left side menu.
You can either:
Under Application Control, enable and configure the module features.
Save your policy.
If you created a new policy, apply it on the endpoints where the feature is deployed.
Go to the Network page from the left side menu.
Select the endpoints you want to apply the policy to.
Click the
Assign Policy button at the upper side of the table.Select the policy you want to apply.
Click Finish.
Note
For more information, refer to Assigning device policies
If you have edited an existing policy, make sure it is applied to all endpoints where the feature is deployed.
Apply Application Control settings by following the steps presented on the Application Inventory page.
This will ensure that the feature is enabled and configured to best suit your company's needs.
Test out the Application Control feature
This feature allows you to allow or deny the use of a specific app in your environment.
Log in to GravityZone Control Center.
Go to the policy you want to use to test the feature on.
Go to Application Control and make sure the feature is enabled.
Go to the Network > Application Inventory page from the left side menu.
Select the application you want to block from the list.
Click on Add to policy.
Create a unique name for this rule.
Select the target of your rule.
In the permission dropdown select Deny.
Return to Policies > Application Control and check if the rule was added to the intended policy.
The application will now be blocked in your environment.
Check reports
You can get information regarding the activity of the feature from the Blocked Applications report.
Note
For more information refer to Report types.
Create portlets
Log in to GravityZone Control Center.
Go to the Dashboard page from the left side menu.
Click the Add portlet button on the upper right side of the page.
Select the portlet you want to create.
Note
You can customize the Dashboard page by dragging and dropping a portlet to the position that best suits your needs.
There is a portlet available for each report type provided by the console.