DriveLock Customer Forum
Information
83 results found
-
Autostart/delay/non-autoplay of awareness campaigns
We have set the trigger for "start campaign" to "at logon".
Logon can take up to one minute for us. But the video sometimes starts already in the background, before the desktop is visible.
If the campaign consists of a 3 minute video, the user misses 1/3.
We need a way to to set a delay (1-X Minutes) for the "immediate start".
An alternative way would be that the window apperas and the user has to click the "play" button himself.
1 voteunder review ·
AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will check and evaluate the options technically.
-
Controlling Defender Core Isolation with Drivelock Policy Setting
It should be possible to control the memory integrity setting of the Core Isolation Feature within the Windows Defender Antivirus via Drivelock policy.
In addition, you should be able to hide the feature for your clients.
1 votecollecting additional votes · 0 comments · Environment Management · Flag idea as inappropriate… · Admin → -
Use fingerprint and/or face recognition at DriveLock PBA (Windows Hello support)
When using the Drivelock PBA with Yubikeys to implement a 2FA, the use of fingerprint scanners and facial recognition is not possible. Login works with PIN or username/password.
We have notebooks with fingerprint and face recognition in use. If you activate the functionality in Windows, the Drivelock PBA does not work anymore. The PBA cannot be installed or uninstalled. The PBA users are not synchronized. This means that the additional logon methods cannot be used. With the PBA fingerprint and face recognition should be possible.1 vote -
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
2 votes -
Selectable positioning of the dialog box for user notifications of the agents
It would be helpful for the user if the agent user notification dialog could be moved to a selectable position. Currently, this pops up in the lower right corner.
On devices with visualizations for operation in the plant area, operation and acknowledgement buttons of the UI are blocked in this situation.
It would be convenient to define the positions left-up, left-down, etc. via configuration in the MMC or via integration of the handling of the window position in the agent as last-position-as-default.1 votecollecting additional votes ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
The hardcoded 1440min Defender State Reporting should be configurable by policy
The DriveLock Agent sents the Defender state today (hardcoded) every 1440min to the DES.
We want to have it configurable over Policy Settings, to allow a more frequent Status Report
sent by the Agent to the DES, to get a more sufficient and useful view within the DOC.
Just manual registry Settings are not sufficient for us, we want to rollout a Defender reporting Interval of every 6hours
to all of our clients - configured by policy.2 votescollecting additional votes ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Netzwerkconnection anhand des primären DNS-Suffix bei jedem Verbindungsaufbau
Wir würden gerne die Netzwerkrichtlinien von Drivelock nutzen, damit die verwalteten Clients sich ausschließlich mit unserem Domänennetzwerk verbinden und im laufenden Betrieb auch die Netzwerkschnittstellen wechseln können. Dies würden wir gerne anhand des primären DNS-Suffix abfragen.
Momentan gibt es diese Möglichkeit bereits, doch wird diese Abfrage lediglich einmalig abgefragt und nicht bei jedem erneuten Verbindungsaufbau.
Wir wollen unseren Clients ermöglichen, dass sie sich sowohl über Wlan, als auch über Kabel verbinden und auch während einer Sitzung wechseln können.
Um dies zu erreichen, müsste unter dem Kartenreiter "Action" im Eigenschaftenfenster der Netzwerkrichtlinien eine Auswahl ähnlich wie "Disable network connection until new…2 votes -
Support Imprivata credential provider
For synchronization of users/credentials and for a Windows SSO after successful authentication of the user at the DriveLock PBA, a connection of the DriveLock Credential Provider to the Credential Provider of the Imprivata Agent is required (Credential Provider Wrapper).
1 vote -
BitLocker Protector Status
It should be possible to find / filter clients in the DoC for which the protector status of the BitLocker encryption has been disabled. Currently, clients with this status are displayed as OK / Green, although the devices might be vulnerable.
2 votes -
Need a DriveLock REST API for use with PRTG Network Monitor.
We do need the DOC functionality as a REST API, as we want integrate some
views within our Network Monitor Tool "PRTG".
And once it is implemented, we do need a official REST API documentation.
For example, when we define a DOC View for Computers/Agents with heartbeat was more than4weeks ago, then we want to create a REST API call from it, to view them within our PRTG Monitor tool,
without the needs to login into DOC. Similar like it works with SentinelOne.1 voteon the roadmap ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
Creating an API to access DriveLock information via DES is already part of our long-term issues roadmap.
-
Want to have the DOC Standard View for "Unknown (>3w)" configurable.
We do need the DOC Standard View for all Clients "Unknown (>3w)" configurable
so we can define also a view for Agents whose last system heartbeat was more than1month, >3month, >6month, >9month and >12month ago; their status is unknown
1 vote -
License in use view for cloud customers
We want to have a License in Use view (Cloud) same or similar way as it exist for DriveLock onPrem installations.
1 voteplanned ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will provide cloud customers information about used and assigned DriveLock modules. This is one topic on our short-term roadmap and discussions about the implementation have already started.
-
Get Local Admin Password via DOC (Native Security)
It should be possible to retrieve the password of a user created via the OS management in the DOC and not only via the agent.
Maybe if the Trust to the AD gets lost, the user won´t be able to login to his computer anymore.
5 voteson the roadmap ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We have added this feature request to our roadmap for a more detailed estimation.
-
Allow multi-factor authentication (2FA/MFA) for DOC login
Drivelock is a security tool connected to the Active Directory.
It should be possible to have consoles with dual authentication (MFA).
For me it is mandatory to avoid an hacker to do what he wants.3 voteson the roadmap ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We have added this requirement to our product backlog.
-
Ability to remove management audit events via Policy
There are multiple events which are logged in the console, like Event-ID 910 (DriveLock Management Console started) which are not necessary. It would be good to be able to remove them with the DriveLock Management Console like the other events until Event-ID ~750
3 votescollecting additional votes ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
DriveLock Linux Agent should be able to send all existing events to other external systems via email
As an administrator I want to let the Linux Agent send all drivelock agent events also to external systems.
It should work similar like DriveLock Agents for Windows OS.
If we can define a priority, we would like to see the following priority order (for implementing):
1) SMTP (email, supporting TLS/SSL)
2) SNMP1 voteon the roadmap ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
In the near future, we will change the way events and alerts will be sent to external systems via email (SMTP) or syslog (SNMP).
No longer will each agent forward something individually, this task will be handled centrally by our DriveLock Enterprise Service. It will make no difference on which operating system the DriveLock Agent is running: Windows, Linux or MacOS.
A corresponding feature request has already been added to the short-term product backlog.
-
Format BitLocker2Go USB removables like in Encryption2Go
In Encryption2Go it is possible to format the USB removables before encryption and keep the data if necessary - these options are completely missing in BitLocker2Go.
2 votescollecting additional votes ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will follow up on this idea, taking into account the voting in this forum, among other aspects, for inclusion in the detailed product backlog for the next version.
-
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
2 votescollecting additional votes ·AdminMark Hartmann
(Senior Director Product Management Technology, DriveLock SE)
responded
We will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
2 votes -
DriveLock License Management (expire dates) over DOC, within an Enterprise Environment
DES Servers, running into an an protected Enterprise Environment configured according Microsoft's Recommendation
for an Enterprise-Access-Modell, should be able to renew their License Date (Maintenance Date) over the DOC,
without having direct Internet access, and without getting each year a new license to activate by phone.
An Implementation idea is maybe a Windows 10 Client System running DOC Companion, while the Client have
Internet Access over a Company Proxy Server, to renew the License at the DES Server backend.3 votes
- Don't see your idea?