Configuring Application Control in the Web Console
In the Web Console, you can configure Application Control settings in the policy properties (Application settings→ Security Controls→ Application Control)
Application Control component settings
Setting
Description
Application Control enabled / disabled
This toggle button enables or disables Application Control.
The toggle button is switched off by default.
Application Control mode
What Application Control does when it detects an attempt to run an application that satisfies the configured rules:
Block. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes blocks the attempt to start an application that matches the rules.
Inform (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes tests the rules and generates an event about an attempt to start an application that matches the rules.
Method for applying Application Control rules
Method for applying Application Control rules:
Allowlist. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes prevents all users from running any applications except those specified in the Application Control rules.
Denylist (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes allows all users to run any applications except those specified in the Application Control rules.
In the drop-down list, you can select how rules are added:
Replace local rules with policy rules. When you select this item, the application applies only the rules specified in the policy.
Add policy rules to local rules (default value). When you select this item, the application applies the rules specified in the policy together with the local rules configured on the protected device.