I'am doing a lab about Solidcore products to learn more. I have my ePO and Solidcore extension and packages installed. I deployed the product on workstations and I did the "solidify" process fine. I think the product is working, but I want to do something more "custom" I created a new policy based on application control rules. I put a trust user and in executable files. I banned opera installer by hash.If I configure a trust user I can install new apps(even that app is not on whitelist) I think the policy don't work. I try to enforce on endpoint but that configuration is not working. I have attached some screenshoots:
Opera banned by hash
Execute the opera installer(Yes, is blocked but is blocked because operasetup is not on whitelist)
If you see, the trust user doesn't appear on list.
If I try to execute wireshark the same thing. I think if I have a trust user I can execute anyway.
Thank you. it is working the trusted user now. I put lockdown. Now I have another question. What is the correct way to block a specific installer? I mean, If I want to block opera, wireshark and so on but with a trusted user. Is that possible?
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.