Enable Application Control

The check box enables the Application Control component.

This check box is cleared by default.

Application Control mode

What Application Control does when it detects an attempt to run an application that satisfies the configured rules:

• Block. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes blocks the attempt to start an application that matches the rules.
• Inform (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes tests the rules and generates an event about an attempt to start an application that matches the rules.

Application Control mode

Application Control mode:

• Allowlist. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes prevents all users from running any applications except those specified in the Application Control rules.
• Denylist (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes allows all users to run any applications except those specified in the Application Control rules.

Application Control rules

This group of settings contains the Configure button. Clicking this button opens the Application Control rules window.

Applying rules

In the drop-down list, you can select how rules are added:

• Replace local rules with policy rules. When you select this item, the application applies only the rules specified in the policy.
• Add policy rules to local rules (default value). When you select this item, the application applies the rules specified in the policy together with the local rules configured on the protected device.