Creating a Path Rule for a User or User Group
You can authorize executable files from a specified location of specific users and user groups, designated by path.
- From the Management Console, select Tools > Path Rules.
The Path Rules dialog opens. -
Using common Windows browser conventions, you can:
• Maximize the dialog screen size
•Sort columns by header row
• Resize the width of columns - Click Add new.
The Edit Path Rules dialog opens: - Type the name of the user or user group that the path rule applies to.
- Click Add.
The Path Rule> dialog opens. - Type the full path for the path rule.
- Select one or a combination of the following options:
- Click OK.
The Path Rule dialog closes. - In the Edit Path Rules dialog, select one of the following options:
- Click Close.
The Path Rules dialog closes and the specified user is authorized to use the files specified in the path.
|
Option |
Description |
|---|---|
|
Ownership Check |
The path rule only applies if a user or user group is listed as a Trusted Owner in the Set Trusted Owner dialog. |
|
Include subdirectories |
The path rule applies to all files in subfolders of the root folder specified by the file path. |
|
Log execution |
The path rule attempt is logged as EXEC-GRANTED when the Log everything option is set for the Execution Log default option. |
|
Option |
Description |
|---|---|
|
Add |
Insert a new path for all users. |
|
OK |
Save the rule and close the dialog. |
|
Cancel |
Abandon the operation and close the dialog. |
|
Edit |
Change the selected path for the path rule. |
|
Delete |
Erase the selected path from the path rule. |
If you want to export a path rule, select the path rule and click Export to .CSV.
- Trusted Paths and Group Ownership
There are specific behaviors related to the use of a Group as a Trusted Owner.