Chicago Security User Group

 View Only

Sample Application and Device policies - Lockdown 

Sep 22, 2016 02:29 PM

All,

 

It was great being able to talk about some of the unique ways we use application and device control (ADC) to help secure our endpoints.  Attached is a sanatized version of our lockdown policy which most users have.  This policy effectivly locks down all storage media from reading/writing/executing and also has a few nifty application hardening policies.  Things that can help you monitor if users are adding scheduled tasks, changing critical operating system files or registry keys.  All rules are set to test mode to prevent accidents.  Apply them to test machines - tweak to your environment - and test carefully before enabling. 

 

Another great set of ADC policies for refernace is hosted at https://www.symantec.com/connect/blogs/defeat-powerware-using-sep-application-control-policies

 

180px_Application Control.jpg

Statistics
0 Favorited
0 Views
1 Files
0 Shares
0 Downloads
Attachment(s)
zip file
Workstation and Laptop ADC Storage Lockdown sample.zip   26 KB   1 version
Uploaded - Feb 25, 2020

Tags and Keywords

Comments

Sep 22, 2016 02:40 PM

From our Chicago Security / Midwest DLP User Group meeting on 9/21/16 at Wildfire in Schaumburg, IL.

Related Entries and Links

No Related Resource entered.