Default Allow mode allows all applications to start if they are not blocked by rules or by a conclusion from KSN that they are not trusted. Default Allow mode can be enabled by adding specific allowing rules. You can enable Default Allow for only scripts or for all executable files.
To add a Default Allow rule:
Open the Applications Launch Control rules window.
Click the Add button.
In the context menu of the button, select Add one rule.
The Rule settings window opens.
In the Name field, enter the name of the rule.
In the Type drop-down list, select the Allowing rule type.
In the Scope drop-down list, select the type of files whose execution will be controlled by the rule:
Executable files if you want the rule to control the launch of executable files.
Scripts and MSI packages if you want the rule to control the launch of scripts and MSI packages.
In the Rule triggering criterion group box, select the Path to file option.
Enter the following mask: ?:\
Click OK in the Rule settings window.
Kaspersky Embedded Systems Security applies the Default Allow mode.