DriveLock Customer Forum
Information
-
DriveLock Linux Agent should be able to send all existing events to other external systems via email
As an administrator I want to let the Linux Agent send all drivelock agent events also to external systems.
It should work similar like DriveLock Agents for Windows OS.
If we can define a priority, we would like to see the following priority order (for implementing):
1) SMTP (email, supporting TLS/SSL)
2) SNMP1 voteon the roadmap ·AdminMark Hartmann (Senior Director Product Management Technology, DriveLock SE) responded
In the near future, we will change the way events and alerts will be sent to external systems via email (SMTP) or syslog (SNMP).
No longer will each agent forward something individually, this task will be handled centrally by our DriveLock Enterprise Service. It will make no difference on which operating system the DriveLock Agent is running: Windows, Linux or MacOS.
A corresponding feature request has already been added to the short-term product backlog.
-
Format BitLocker2Go USB removables like in Encryption2Go
In Encryption2Go it is possible to format the USB removables before encryption and keep the data if necessary - these options are completely missing in BitLocker2Go.
2 votes -
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
1 vote -
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
2 votes -
DriveLock License Management (expire dates) over DOC, within an Enterprise Environment
DES Servers, running into an an protected Enterprise Environment configured according Microsoft's Recommendation
for an Enterprise-Access-Modell, should be able to renew their License Date (Maintenance Date) over the DOC,
without having direct Internet access, and without getting each year a new license to activate by phone.
An Implementation idea is maybe a Windows 10 Client System running DOC Companion, while the Client have
Internet Access over a Company Proxy Server, to renew the License at the DES Server backend.3 votes -
DLSupportAgent.exe
Der "DLSupportAgent.exe" sollte via Kommandozeile bedienbar sein, so dass die Aktivierung nicht zwingend grafisch erfolgen muss. Es sollten die Kommandozeile und die Windows-Powershell unterstützt werden:
z.B. DLSupportAgent.exe -Step [1/2/3/4/5/6/7]
The "DLSupportAgent.exe" should support a interaction via command line (cmd / Windows-Powershell) so that there is no need for a graphical access to the traget system.
1 vote -
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
3 votes -
Configure automatic temporary unlock in the future (from time x to time y)
We have repeated requests for USB releases for specific time periods in the future. Would it be possible in the helpdesk temporary unlock window to select a period in the future with time and date specification?
1 vote -
Add a column for policy order in the computer config details view
Currently there is no option in the computer config details view of the DOC to have a look at the order of how the policies will be applied on a device.
I would suggest to add a column where you can see the order of the applied policies.2 votes -
DOC deployment installation option should support DriveLock groups
In the new DOC 21.2, it is possible to deploy new agent on computer. It would be very nice to be able to use drivelock groups here instead of a static list of PCs.
1 vote -
3rd party events should be directly sent be SMTP/SNMP
it seams 3rd party event can only be send to the DES as oppose to DriveLock events that cab be send directly by the agent through SNMP/SMTP. Ths should be the case for 3rd party events too.
1 vote -
Multiselection in white list rules under devices is not possibe
In policy editor, it is possible to multi select WLR under drives in order to move them or delete them but it is not possible to do the very same thing in the devices category. It will be nice to have the same functionality.
1 vote -
DriveLock Bitlocker with PBA - Autologon without a user
After the DriveLock Bitlocker installation with PBA, the PBA screen also appears if no user has previously logged on.
The DriveLock PBA should be skipped until the first Windows User has logged on.
2 votes -
Preinstall DOC Companion for All Users on a computer
Currently the DOC Companion can only be installed, when the user is also local admin on his machine.
But it's a really good security recommendation to separate users internet activities from admin tasks.
So we'd suggest to have an install procedure, that can be started from an admin command line or via a software distribution system.Add a configuration option to prevent the download/start of DOC_Companion.exe.
2 votesplanned ·AdminMark Hartmann (Senior Director Product Management Technology, DriveLock SE) responded
This idea has been merged with a corresponding idea and has been added to our short term product backlog.
-
EDR frequency based rule
DriveLock should allow the creation of alert based on frequency and time. Ideally with boolean logic f.e:
-if event happens (more¦less) X time within Y minutes (most important one)
-if event happens between X am and Y pm
-if event does not happen between X am and Y pm
-if event happened at least X minutes after the last event
-if event not happened after X minutes of the previous event2 votesunder review ·AdminMark Hartmann (Senior Director Product Management Technology, DriveLock SE) responded
Using event filters, DriveLock can already trigger a response/alert only, when an event appears X times within the last Y seconds/minutes. These filters also allow correlation (AND and OR) of more than one condition, allowing more complex scenarios.
Nevertheless, a criteria like "between X hour and Y hour is not available yet. -
Enc2Go should be able to reformat new USB Sticks to exFAT, even Sticks are already formatted to NTFS or exFat
Today the Encryption to Go feature is able to reformat the physical USB sticks only from FAT32 -> to exFat or NTFS.
We want to have a feature that the USB stick will be always reformatted for example to exFat, regardless which Filesystem is current used by the USB stick. This feature would help to always cleanup USB sticks during container creation, and would help to move from NTFS formatted sticks back to exFat. Which is otherwise a manual task (not possible in a large environment).2 votes -
802.1x support for SSO in the PBA/Win-Login
Currently the Single-Sign-On method for the PBA or for Windows doesn't support port configuration of 802.1x.
That hinder us from using this feature.So I'd like to suggest implementing the support of a port configuration 802.1x to use the SSO in the PBA/Win-Login.
1 vote -
Permanently unlock devices directly from within the DOC
With 2021.2 permanently unlocking single drives has become easier than ever before. It would be great to have the same capability for other devices like cameras, smartphones.
Unlocking applications previously blocked by DriveLock application control has been added with 2022.1.1 vote -
History diagrams showing the use of devices or applications over a period of time as line graphs
It would be nice to have a set of diagrams showing the use of devices, applications or even other assets over a period of time, as line graphs. This would support risk evaluation showing trends or values different from an expected or usual trend.
0 votes -
Anonymization of personal data in DOC views
Data related to a single person (for example, user names or computer names) should only be visible in any DOC view, if the anonymization has been manually deactivated and if either the current user has a special permission which is allowing to view this data or a second user with appropriate permissions has logged in additionally (four-eyes principle).
0 votes
- Don't see your idea?