I need to allow end points to execute their own applications without denying them but I need to report their activities about executing of new applications what should I do? dose enabling self approval help ?
policy catalog>application control options>enable self approval
I also changed the solidcore mode into observe mode but it still did not allow applications in some directories. what should I do?