With Authorized Certificates you can authorize applications in the user workspace using the certificate of the signed executable in combination with the Publisher and/or Product name. This prevents potentially harmful executables from causing damage in your environment.
Applications that are authorized on global level can be accessed by all users, but you can maintain a high level of security in the user workspace by applying Access Control criteria and Workspace Control criteria to each global authorized application.
You can configure Authorized Certificates Security at Security > Authorized Certificates. To enforce the use of Authorized Certificates for all Managed Applications, select Use globally authorized certificates for this application at Composition > Applications, on the application's Security > Authorized Files tab .
Export log to CSV file
To export the information found under the Log tab as a CSV file, follow these steps:
Open the Workspace Control Console and navigate to Security > Authorized Certificates > Log tab.
Right-click on any entry and select Export to file from the context-menu.
Select a location where to save the CSV file, enter an appropriate name for the file and then select Save.
Export log using the command line
Ivanti recommends to test first by exporting just one or two days of data.
Security logs can also be exported using the pwrtech command line:
pwrtech.exe /exportlog /type=authcert /output=<output filepath> [/outputtype=csv] [/start=<start date>] [/end=<end date>]
/outputtype, /start and /end are optional parameters. If /outputtype is not specified, then the security logs are exported as XML files instead of CSV files.
Replace the following with the appropriate values:
<output filepath> — Enter the full filepath where to save the CSV or XML file.
For example: C:\export\authorized_certificates.csv.
<start date> — Enter the start date to export log entries starting with the specified date.
The format for date is YYYYMMDD. For example: 20211230.
<end date> — Enter the end date to export log entries up to the specified date.
The format for date is YYYYMMDD. For example: 20220123.
pwrtech.exe /exportlog /type=authcert /output=C:\export\authorized_certificates.csv /outputtype=csv /start=20211230 /end=20220123