DriveLock Customer Forum
Information
85 results found
-
Show when a rule was last used
It would be helpful to have a filter that shows me which whitelist rule has not been used for e.g. 1 year.
The filter should be used to "clean up" the rules.13 votes -
Identifying a computer using IP address (or some other unique value) vs hostname
In a customer environment where many computers share the same hostname (eg. machines in a large distributed convenience store infrastructure), it would be very useful to be able to register the computer via its IP address or some other unique value, instead of just relying on hostnames/FQDN. Perhaps a feature to allow the customer to select the IP address (or a unique agent registration ID) to be used in our management and operations consoles - without the need for scripting or a convoluted workaround.
7 votes -
Agent Meldungen für Application Control deaktivierbar machen
Es sollte möglich sein sämtliche lokale Agent Meldungen aus dem Modul Application Control zu deaktivieren.
Hintergrund:
Wir verwalten über 1300 PCs und möchten flächendeckend AppCtrl einsetzen. Die Anwender an den PCs sind zum Großteil nicht IT Affin.
Diese großen gelben Warnfenster z.B. im Whitelistmodus (simulation) verwirren oder verängstigen den Anwender. Die am Client gesammelten Informationen und / oder Regelverstöße interessieren in der Simulation vor einem Rollout nur die Admins.
Wir benötigen diesbezüglich dringend eine derartige Anpassung um den Rollout durchführen zu können.6 votes -
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votes -
Self-service unlock
The self-service unlock sometimes already corresponds to the desire of our customers. The customers who are traveling around the world also want to limit the unlock to time (outside working hours, weekends) etc. so that it is only valid for certain groups or people when the regular help desk is not in place. I think this is not possible in 7.9.6. Also, with unlock the 24/7 worldwide time zones should work fine.
6 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Full support of IPv6 protocoll
All DriveLock components are able to communication using IPv6. An admin can configure IPv6 addresses in the relevant sections in the DriveLock Management Console and the DriveLock Control Center.
6 votes -
Web-Interface - Computer-View - Related Objects - "Alerts" missing
I miss the possibility to see or jump to computer related EDR-Alerts when accessing a Computer object.
Under "Related Objects" or below "Events" it woudl be nice to jump directtly into a view of computer-related alerts.
Shouldn't be too hard to implement - thanks :-)
5 votes -
SB-Freigabe von USB-Sticks auf "Nur lesbar" zu setzen
Bei der SB-Freigabe von USB-Datenträgern sollte es möglich sein, diese auf "Nur lesbar" zu setzen damit ein Datenabzug verhindert werden kann, es aber trotzdem möglich ist, Daten vom Datenträger zu lesen. Nötig z.B. bei einem Clickshare Gerät wo die Software aufgerufen werden muss.
5 votes -
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
5 votes -
Defender Management - Identify outdated AV signatures correctly
The defender dashboard should not flag hosts as having an "outdated antivirus definition" when the "Last contact (DriveLock Agent)" is overdue as well.
This indicates an "offline" wokstation rather than a not working antivirus-update and is therefore confusing.
5 votes -
DCC/DOC: Restart agent service via remote connection
Occasionally there will be a need to manually restart the main DL agent service (enforce policy update, etc.). Suggesting to add the possibility to perform agent service restart while connected remotely using DCC or DOC. This is to be restricted to specific admins/operators only.
5 votes -
API Erweiterung - Tool gestützte Freigabe von Devices und Applikationen
Um eine möglichst großen Teil der Aufgaben in DriveLock automatisiert und Toolbasiert ablaufen zu lassen wäre die Erweiterung der API sehr hilfreich. Besipiel hier wären die Automatisierten Freigaben von Devices und Applikationen über die API.
4 votesThe latest version (24.2) allows users to manage both Application Control and Behavior Control. Please refer to the API section of the DOC for more information. The management of drives and devices will be available in a subsequent update.
-
Erkennung von "embedded Files" in Office bzw. PDF Dateien
Derzeit erkennt DriveLock leider keine "embedded Files" in MS Office oder PDF Dateien. Aus Gründen der Sicherheit wäre es erforderlich das DriveLock diese erkennt und mit dem Filter für erlaubte Files abgleicht. So kann sichergestellt werden das bspw. keine ausführbaren Dateien über diesen Weg "geschleust" werden. Also wären z.B. Bild und Video Dateien als "embedded" erlaubt aber eben keine *.exe Dateien.
4 votes -
Security Awareness - EInstellungen für Kampagnen von der DMC in das DOC übertragen
Die Einstellungen für Awareness Kampagnen, welche in der DMC verfügbar sind, sollten auch über das DOC verfügbar sein.
Trigger: Zu welchem Ereignis soll die Kampagne angezeigt werden?
Wann/ wie oft soll die Kampagne wiederholt werden?
Benutzer muss bestätigen
Vollbild ja / nein?4 votes -
Inventory Daten dediziert löschen
DriveLock sollte die Möglichkeit besitzen, Inventorydaten dediziert zu löschen. Hierbei sollten zwischen Drives / Devices / Applikationen usw. unterschieden werden können.
In Kundenumgebungen die schon über mehrere Versionen hinweg bestehen, ist die Auswertung der Daten derzeit einfach zu unübersichtlich. DIe Möglichkeit den Rechner aus dem Operations Center zu löschen und danach das Inventar neu einzulesen ist m.E. nicht ausreichend.4 votes -
Support gMSA (Group Managed Service Accounts) as DES service account
As a customer I want to reduce the problem of service accounts with static passwords.
For this reason Microsoft offers a feature called gMSA (Group Managed Service Accounts).
Please implement a change, so the DES Service will support gMSA within a future release.4 votes -
DOC: Auto-refresh and auto-toggle dashboard
For SOCs and ability to display on big monitoring screens (SecOps style), DOC dashboards should have auto-refresh feature. Refresh intervals should be configurable (every 1 minute, 10 minutes, etc.). DOC dashboards should also have the ability to toggle between dashboard tabs every X amount of time (configurable).
4 votes -
Missing entries in Explorer based on voluntary encryption of USB sticks
Subject: Encryption 2-Go
When encrypting USB sticks on a voluntary basis (not forced), no entry appears in the Explorer (right mouse button) to initiate the encryption, also all other entries available in the Start menu or in the taskbar are missing.4 votes -
Persistant File Encryption
As a user I want to have files automatically encrypted when saved into a specific directory, but when I copy or move this file out of this directory it should stay encrypted until an authorized user explicitly stores a decrypted version or manually decrypts it.
4 votes -
More differentiation in the settings of the Self-Service unlock
We would like to enable our employees to selectively share specific drives without much effort on your part.
The "effort" should be in the configuration. So that we can configure the users a self service unlock, in which we can select e.g. specifically the sub-module "CD/DVD drive" and not as before the entire module "drives".Example of how the configuration could end up being:
Share computer
CD/DVD Drives
Max.20 minutes
Simplified modules; Hide modules & share all
Advanced Options - File Filter....-> Would increase acceptance by our users and also DL protection as the file filter and logging would…
4 votes
- Don't see your idea?