Adding and editing an Application Startup Control rule

To add or edit an Application Startup Control rule:

1. Open the application settings window.
2. In the left part of the window, in the Endpoint control section, select the Application Startup Control subsection.

   In the right part of the window, the settings of the Application Startup Control component are displayed.

3. Select the Enable Application Startup Control to make the component settings available for editing.
4. Do one of the following:
   • To add a rule, click the Add button.
   • If you want to edit an existing rule, select it in the list of rules and click the Edit button.

   The Application Startup Control rule window opens.

5. Specify or edit the settings of the rule:
   1. In the Rule name field, enter or edit the name of the rule.
   2. In the Inclusion conditions table, create or edit the list of inclusion conditions that trigger a rule by clicking the Add, Edit, Delete, and Convert into exclusion buttons.
   3. In the Exclusion conditions table, create or edit the list of exclusion conditions that trigger a rule by clicking the Add, Edit, Delete, and Convert into inclusion condition buttons.
   4. If required, change the type of rule-triggering condition:
      • To change the condition type from an inclusion condition to an exclusion condition, select a condition in the Inclusion conditions table and click the Convert into exclusion button.
      • To change the condition type from an exclusion condition to an inclusion condition, select a condition in the Exclusion conditions table and click the Convert into inclusion condition button.
   5. Compile or edit a list of users and/or groups of users who are allowed or not allowed to start applications that meet the rule trigger conditions. To do this, click the Add button in the Principals and their rights table.

      The Select Users or Groups window in Microsoft Windows opens. This window lets you select users and / or user groups.

      By default, the Everyone value is added to the list of users. The rule applies to all users.

      If there is no user specified in the table, the rule cannot be saved.

   6. In the Principals and their rights table, select the Allow or Block check boxes opposite the users and/or groups of users to determine their right to start applications.

      The check box that is selected by default depends on the Application Startup Control operating mode.

   7. Select the Deny for other users check box if you want all users that do not appear in the Principal column and that are not part of the group of users specified in the Principal column to be blocked from starting applications that match the rule trigger conditions.

      If the Deny for other users check box is cleared, Kaspersky Endpoint Security does not control the startup of applications by users that are not specified in the Principals and their rights table and that do not belong to the groups of users specified in the Principals and their rights table.

   8. If you want Kaspersky Endpoint Security to consider applications matching the rule trigger conditions as trusted updaters allowed to start other applications for which no Application Startup Control rules are defined, select the Trusted Updaters check box.
6. Click OK.
7. To save changes, click the Save button.