What's new in Application Control?


In addition to code enhancements and bug fixes the following features are included:

Support for Azure Active Directory

New rule nodes have been added to represent Azure Active Directory (AAD) groups and users. Like other types of rule, the standard behaviour is available, including:

  • Display of the rule and normal interactions

  • Configuration profiler

  • Snippet import

  • Search

  • Undo/redo

  • Signature rescan

  • Library group in-use checking

  • Cut/copy/paste between rules within this rule type

These rules apply on the agents of both AAD-joined and hybrid-AAD-joined machines. If a device is not connected to the network at logon then the last known Groups apply. User group assignment changes can only apply at logon. Device group assignment changes can only apply at restart.

Further, when creating custom rules in the console, they can be created with conditions for AAD User Name, AAD User Group, AAD Computer Group and AAD Client Computer Group.

Configuration for AAD is via the Global Settings.

Following are details for accessing Azure Active Directory:

Azure Active Directory (AAD) Access

AAD (Azure Active Directory) User Rules

AAD (Azure Active Directory) Group Rules

Updates to Policy Change Request integration with Ivanti Neurons for ITSM

Client name is now included as data that can be added to the request item in Ivanti Neurons for ITSM. It should be noted though that if the policy is updated the update is not limited to the specific device it was requested from but to the user who requested it.

In earlier versions of the integration, once a request was approved it remained at that status indefinitely. Application Control will now update the Request to fulfilled after the policy change has been applied.

See Request Status for further information.

Previous Versions