Application Control Overview

Functionality

The Application Control features available in Security Controls include:

  • Executable Control
  • Privilege Management
  • Browser Control

You can choose which features you want to use. For information on enabling or disabling certain Application Control features, see Application Control Configuration Settings

Benefits

The benefits of using Application Control are:

  • Reduces risk and helps achieve compliance by protecting against ransomware, targeted attacks, zero-day exploits, advanced persistent threats and malicious code that tries to execute in your environment.
  • Provides granular privilege management enabling you to implement 'least privilege' access and eliminate local admin accounts while still giving users the privileges that they need to do their job. The privilege level of a user, group or role can be elevated or reduced on a per application and Windows component basis.
  • Allows you to manage application access and privilege management across your desktop and server estate with low administration overhead through the use of an extensive and flexible rules engine. Ivanti Application Control can protect systems without the need for complex lists or constant management.
  • Delivers security without impacting productivity with minimal performance impact to end users.
  • Enforces Microsoft per-device licensing. By controlling which users or devices have permission to run named applications, limits can be placed on the number of application instances, which devices or users can run the application, the timing of when users run a program and for how long.

Configuration

The Application Control features are set up and saved in a configuration. The configuration is then assigned to an agent policy. The agent policy is assigned to an agent for deployment to managed endpoints. Use the Configuration Editor to define Configuration Settings, Rule Collections, and Rule Sets.

Whenever changes are saved to a configuration a new version of the configuration is created. Different versions are identified by the version comments recorded when saving. You can use the comparison tool to view differences between two versions, for more details see Configuration Comparison Tool.

The Application Control workflow is as follows:

  1. Open the Security Controls console.
  2. Select Help > Enter/refresh license key.
  3. Security Controls Activation dialog displays.
  4. Add license key and Activate.

For further information refer to Activating Security Controls

  1. Open the Security Controls console.
  2. Select New > Application Control Configuration.
    The Application Control Configuration Editor displays.
  3. Select Configuration Settings > Features tab.
    Enable the required Application Control functionality.
  4. Select Rule Collections set up collections of rules for Files, Folders, Drive and File Hashes.
  5. Select Rule Sets set up the rules for each Rule Set; Group, Everyone, User, Device, Scripted, Process, as required.

For further information refer to Application Control Configuration Settings

  1. Open the Security Controls console.
  2. Select New > Agent Policy.
  3. The Agent Policy Editor displays.
  4. Select Application Control from left hand menu.
  5. Select the Enable Application Control check box.

    6. For further information refer to Enabling Application Control

  6. Enter a Name for the agent policy.
  7. Select a configuration to assign to the agent policy from the drop down list, alternatively select New to create a new configuration.

    8. You must have a configuration to continue with creating an agent policy.

  8. Select Save. If you want to update the agents with the policy and configuration changes select Save and update Agents.

    9. For further information refer to Enabling Application Control

Related Topics

About Executable Control

Privilege Management

About Browser Control

Manage AC Configurations

Application Control Configuration Settings

Enabling Application Control

Activating Security Controls