During operation of the Application Control component, Kaspersky Endpoint Security controls launches of applications on the user computers. This helps reduce the risk of computer infection by restricting access to applications. Application launching is regulated by application control rules.
To use the component, a license that includes the corresponding function is required.
This feature is not supported in the KESL container.
Application Control can operate in two modes:
Thus, if the application control rules are created to the fullest extent possible, Kaspersky Endpoint Security prohibits the launching of all new applications that are not verified by the administrator of the organization's local network, but ensures the performance of the operating system and verified applications that users need to perform their job duties.
For each Application Control operation mode, separate rules can be created and the action can be specified: apply the rule or test the rule. Kaspersky Endpoint Security performs this action when it detects an attempt to start an application.
The Application Control settings are described in the following table.
Application Control settings
Setting |
Description |
---|---|
Application Control enabled / disabled |
This toggle button enables or disables Application Control. The toggle button is switched off by default. |
Application Control action |
You can select the action to be performed by Application Control upon detection of an attempt to start the application that matches the configured rules:
|
Application Control mode |
You can select the mode of the Application Control component operation:
|
Application Control rules |
Clicking the Configure rules link opens the Application Control rules window. |