There are a few ways of doing it.
Option 1
The best is with process. The process is basically do not allow users permission to install anything. The only way an install can occur is via software delivery. Enable software catalog to let user install manually only permitted software. Have a process in place for users to request software. If approved they are added to the group that is permitted to have that software.
Option 2
Create a script that detects the software you are interested in and if present creates a software install record using the sd_Acmd command.
Create a group that contains all the machines that are authorized to have the software.
Create a group showing all machines with the product installed and not in the authorized group.
Create an uninstall package for the software.
Create a software policy that runs the uninstall job and link it to the group of unauthorized machines you just created.
Option 1 should be the one you adopt. Option 2 should be what you do one time to clean up what is currently wrong.
Hope that helps.
Richard Lechner
Principal Engineering Services Architect
CA Technologies
Mobile: +1 703 655 7161 | Richard.Lechner@ca.com
<mailto:Richard.Lechner@ca.com>[CA]<http://www.ca.com/us/default.aspx>[Twitter]<http://twitter.com/CAInc>[Slideshare]<http://www.slideshare.net/cainc>[Facebook]<https://www.facebook.com/CATechnologies>[YouTube]<http://www.youtube.com/user/catechnologies>[LinkedIn]<http://www.linkedin.com/company/1372?goback=.cps_1244823420724_1>[Google]<https://plus.google.com/CATechnologies>[Google+]<http://www.ca.com/us/rss.aspx?intcmp=footernav>