Configuring Application Control in the Administration Console

In the Administration Console, you can configure Application Control settings in the policy properties (Security ControlsApplication Control).

Application Control component settings

Setting

Description

Enable Application Control

The check box enables the Application Control component.

This check box is cleared by default.

Action on application startup attempt

The action that Kaspersky Embedded Systems Security performs upon detecting an attempt to start an application that matches the configured rules:

  • Apply rules (default value). If you select this option, Kaspersky Embedded Systems Security applies Application Control rules and performs the action specified in the rules.
  • Test rules. If you select this option, Kaspersky Embedded Systems Security tests the rules and generates an event about an attempt to start an application that matches the rules.

Application Control mode

Application Control task operation mode:

  • Allowlist. If you select this option, Kaspersky Embedded Systems Security prevents all users from launching any applications that are not specified in the Application Control rules or signed with certificates trusted by Application Control.
  • Denylist (default value). If you select this option, Kaspersky Embedded Systems Security allows all users to launch any applications except those specified in the Application Control rules.

Trust applications signed by a trusted certificate

This check box enables or disables the use of the trusted certificate list by Application Control. When the check box is selected, Application Control in allowlist mode does not block applications that are signed with trusted certificates.

This check box is available if the Application Control setting is set to Allowlist.

The Configure button opens a window in which you can configure the list of trusted certificates for Application Control.

Application Control rules

This group of settings contains the Configure button. Clicking this button opens the Application Control rules window.

Applying rules

In the drop-down list, you can select how rules are added:

  • Replace local rules with policy rules. When you select this item, the application applies only the rules specified in the policy.
  • Add policy rules to local rules (default value). When you select this item, the application applies the rules specified in the policy together with the local rules configured on the protected device.

Page top