Enabling the Default Allow mode

Support

Support for business applications

Kaspersky Security 11.x for Windows Server

Applications Launch Control

Managing Applications Launch Control via the Administration Plug-in

Configuring Applications Launch Control rules via the Kaspersky Security Center

Enabling the Default Allow mode

June 10, 2022

ID 155764

Save as PDF

Default Allow mode allows all applications to start if they are not blocked by rules or by a conclusion from KSN that they are not trusted. Default Allow mode can be enabled by adding specific allowing rules. You can enable Default Allow for only scripts or for all executable files.

To add a Default Allow rule:

Open the Applications Launch Control rules window.
Click the Add button and, in the button’s context menu, select Add one rule.
The Rule settings window opens.
In the Name field, enter the name of the rule.
In the Type drop-down list, select the Allowing rule type.
In the Scope drop-down list, select the type of files whose execution will be controlled by the rule:
- Executable files if you want the rule to control the launch of executable files.
- Scripts and MSI packages if you want the rule to control the launch of scripts and MSI packages.
In the Rule triggering criterion group box, select the Path to file option.
Enter the following mask: ?:\
Click OK in the Rule settings window.

Kaspersky Security for Windows Server applies the Default Allow mode.

Kaspersky Security for Windows Server: Prompt detection of all kinds of threats

Launch control and exploit prevention for businesses of all sizes. Buy as part of Endpoint Security for Business Advanced.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.