In this section:
The User rules node allows you to match security control rules with specific users within the enterprise.
The User summary displays the User, Textual Security Identifier (SID) and Security Level of the rule. A SID is a data structure of variable length that identifies user, group, and computer accounts. Every account on a network is issued a unique SID when the account is first created. Internal processes in Windows refer to an accounts SID rather than the accounts user or group name. Likewise, Application Control also refers to a user or group SID unless the SID could not be found when added to the configuration.
To add a user rule set, select Rule Sets > User. Right-click and select Add User Rule Set. The Add User Rule Set dialog displays. Enter or browse to select an account.
- To remove a user rule set, select a rule set, right-click and select Remove Rule Set. A confirmation message displays. Click Yes to confirm the removal.