Changing application control rules for trust groups and groups of applications
The optimal application privilege control rules for different trust groups are created by default. The settings of rules for application group control inherit values from the settings of trust group control rules. You can edit the preset trust group control rules and the rules for application group control.
To edit the trust group control rules or the rules for application group control:
In the left part of the window, in the Advanced Threat Protection section, select Host Intrusion Prevention.
In the right part of the window, the settings of the Host Intrusion Prevention component are displayed.
Click the Applications button.
This opens the Application Privilege Control tab in the Host Intrusion Prevention window.
Select the necessary trust group or application group.
From the context menu of a trust group or of a group of applications, select Group rules.
The Application group control rules window opens.
In the Application group control rules window, do one of the following:
To edit trust group control rules or application group control rules that govern the rights of the trust group or application group to access the operating system registry, user files, and application settings, select the Files and system registry tab.
To edit trust group control rules or application group control rules that govern the rights of the trust group or application group to access operating system processes and objects, select the Rights tab.
For the required resource, in the column of the corresponding action, right-click to open the context menu.
From the context menu, select the required item.
Inherit
Allow
Block
Log events
If you are editing trust group control rules, the Inherit item is not available.