Application Whitelisting and Your Managed Desktops Aakash Shah
- Slides: 26
Application Whitelisting and Your Managed Desktops Aakash Shah / Jeremy Paje August 15, 2018
Application Whitelisting and Your Managed Desktops About Us Jeremy Paje Manager, Desktop Support Services Office of Information Technology Aakash Shah Systems Engineer, Windows Services Group Office of Information Technology 2
Application Whitelisting and Your Managed Desktops Overview • What is Application Whitelisting? • Reasons for implementing • Setting up App. Locker policies • Troubleshooting App. Locker • Challenges • Questions 3
Application Whitelisting and Your Managed Desktops Question for you 4
Application Whitelisting and Your Managed Desktops Common security layers • • • Antivirus Firewall (software) Firewall (hardware) Patching IPS *Application whitelisting 5
Application Whitelisting and Your Managed Desktops What is Application Whitelisting? • Ways to control application execution – Trust Centric – Default Deny, allow only files on whitelist to run. (recommended) – Threat Centric – Default Allow, block files on blacklist from running. 6
Application Whitelisting and Your Managed Desktops Why should we care? 7
Application Whitelisting and Your Managed Desktops Problems Before Application Whitelisting (Even on patched machines…even without admin rights) 8
Application Whitelisting • Microsoft App. Locker • Windows 10 Enterprise/Education, Windows 7 Enterprise • Group Policy 9
First things first… • Test, test. . . 10
Application Whitelisting and Your Managed Desktops Where Are The App. Locker Policies? 11
Application Whitelisting and Your Managed Desktops Configure Rule Enforcement 12
Application Whitelisting and Your Managed Desktops Enable DLL Rules 13
Application Whitelisting and Your Managed Desktops 14
Application Whitelisting and Your Managed Desktops Create Default Rules 15
Application Whitelisting and Your Managed Desktops Default Rules View 16
Enable Application Identity Service 17
Application Whitelisting and Your Managed Desktops Adding Custom Rules 18
Application Whitelisting and Your Managed Desktops 19
Application Whitelisting and Your Managed Desktops 20
21
22
Logs 23
Recommendations/Tips • • Store apps - NT AUTHORITYSYSTEM Writable folders under C: Windows App. Locker variables DLLs 24
Application Whitelisting and Your Managed Desktops Challenges Types of problems we see: • “I need to log into this webinar now!” • Errors while installing applications • “Issued To” certificate attribute changes • App. Locker rule limitations • Constrained Language Mode in Power. Shell 25
Application Whitelisting and Your Managed Desktops Questions? Jeremy Paje Manager, Desktop Support Services Office of Information Technology jpaje@uci. edu Aakash Shah Systems Engineer, Windows Services Group Office of Information Technology aakash. shah@uci. edu Click Here To Audio Of This Presentation 26
- Differentiate among laptops tablets desktops and servers
- Marion students desktop
- Dr angelo costas
- Aakash r nair
- The given signs signify something and on that basis k-m
- Aakash kejriwal
- Give us your hungry your tired your poor
- N.a. chauhan v. n.k. shah
- Visual images and simile from the poem taj mahal
- Cpgcc
- Hemant shah md
- Any queries images
- Fomema maksud
- Dr sudhir shah ahmedabad
- Dr nadir shah
- Harrow lbc v shah
- Noor shah ryzqa azman
- Nur alam shah
- "amos tanay"
- Amit shah 1800flowers
- Nettipot
- Shah neamatullah college
- Suril shah iit jodhpur
- Hasit shah
- "tushar shah, md"
- Nayan shah md
- Dr. arpit shah