DriveLock Customer Forum
Information
24 results found
-
Show when a rule was last used
It would be helpful to have a filter that shows me which whitelist rule has not been used for e.g. 1 year.
The filter should be used to "clean up" the rules.13 votesIn preparation for another important new feature, we are updating our internal database model in such way, that it also will help us to implement this idea more easily.
We will have a closer look at this idea, once the changes are implemented and tested thoroughly. -
USB tethering
Add an option to block connecting to the Internet by using usb tethering on your smartphone (android and apple).
Usb tethering creates a Remote NDIS based Internet Sharing Device.
11 votes -
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votes -
Format BitLocker2Go USB removables like in Encryption2Go
In Encryption2Go it is possible to format the USB removables before encryption and keep the data if necessary - these options are completely missing in BitLocker2Go.
4 votesWe will follow up on this idea, taking into account the voting in this forum, among other aspects, for inclusion in the detailed product backlog for the next version.
-
Missing entries in Explorer based on voluntary encryption of USB sticks
Subject: Encryption 2-Go
When encrypting USB sticks on a voluntary basis (not forced), no entry appears in the Explorer (right mouse button) to initiate the encryption, also all other entries available in the Start menu or in the taskbar are missing.4 votes -
Erkennung von "embedded Files" in Office bzw. PDF Dateien
Derzeit erkennt DriveLock leider keine "embedded Files" in MS Office oder PDF Dateien. Aus Gründen der Sicherheit wäre es erforderlich das DriveLock diese erkennt und mit dem Filter für erlaubte Files abgleicht. So kann sichergestellt werden das bspw. keine ausführbaren Dateien über diesen Weg "geschleust" werden. Also wären z.B. Bild und Video Dateien als "embedded" erlaubt aber eben keine *.exe Dateien.
3 votes -
More differentiation in the settings of the Self-Service unlock
We would like to enable our employees to selectively share specific drives without much effort on your part.
The "effort" should be in the configuration. So that we can configure the users a self service unlock, in which we can select e.g. specifically the sub-module "CD/DVD drive" and not as before the entire module "drives".Example of how the configuration could end up being:
Share computer
CD/DVD Drives
Max.20 minutes
Simplified modules; Hide modules & share all
Advanced Options - File Filter....-> Would increase acceptance by our users and also DL protection as the file filter and logging would…
3 votes -
Want to manage COM Ports over the SelfService
Today as by 23.2 release only global Blocking or Whilelist for COM ports is possible today.
The DriveLock SelfService Feature should be possible to manage the COM/LPT Ports as well.2 votes -
COM Port Management
We would like to control and manage COM Ports (especially Virtual COM Ports, USB-Serial adapters) in the same way per whitelist rules equal to Drives or other devices like Smartphones, HID devices etc.
In short, possibility of User and Computer combination.
2 votes -
Verknüpfung beim Inhaltstest von Dateien sollte frei wählbar sein
Bei bspw. klassifizierten Dokumenten nach ISO 27001 sollte es möglich sein den Inhaltstest bspw. so zu definieren z.B. Typdefinition docx und ("Intern" oder "Öffentlich") und nicht ("Vertraulich" oder "Streng Vertraulich") . So kann sichergestellt werden das nur docx-Dateien exportiert werden dürfen die als Intern oder Öffentlich klassifiziert sind. Für diesen Ansatz müssten bestimmt Regeln auch negiert werden können.
2 votes -
Possibility to define online remote unlock similar as the SelfService group settings
While unlocking BitLock2Go encrypted sticks via remote unlock the access is only granted to user (which are not in the allowed list) if in the Remote Unlock Wizard the option "deactivate enforced encryption".
We would therefore like to have an option to set this checkbox always similar to selfservice groups where this is possible to be (Optional) set / disabled. This could be for example a role permission which is enabled for the helpdesk role.2 votes -
SB-Freigabe weiter einschränken als Geräte-Typ
In den Eigenschaften einer SB-Freigabe ist es lediglich möglich einzuschränken, ob Laufwerke / Geräte / Smartphones etc. freigegeben werden können. Es kann nicht weiter differenziert werden, welche Geräteklassen freigegeben werden können z.B. sollen nur USB-Controller freigegeben werden dürfen nicht aber Smartcard readers o.ä. .
2 votes -
Seperate Permissions to Add / Delete Devices from a Device Collection
Currently in depth Whitelist rules can only be set in the Management Console. In there we mostly work with Device Collection. We set a rule with a certain behavior, people it affects, etc. and then connect it with a Device Collection. After that the main effort is in adding new devices to that Device List.
We would like to split the administrative load and have main administrators that set up rules and policies. And then we would like a seperate user group with limited permissions that can only add or remove devices from existing device collections. It is important for…
2 votes -
Ability to create rule specific Usage Policy text
As an Admin I have a wide variety of use cases for Usage Policys. Sadly right now it seems I can only set one Custom Text for the Usage Policy.
In a optimal situation I would like to display different Text of the Usage Policy depending on what rule is triggered.
Example:
Rule 1 is triggered for HID and tells the user HID devices are allowed if they have been provided by the Company.
Rule 2 is triggered for a special Testing Group within the organisation for every printer that is usually blocked. This tells them they can use this…2 votes -
Want to remote write volume.id files (from DOC).
We do need a feature to write volume.id files remotely.
This should be implemented via DOC.
We can not install the DMC everywhere on clients, just to write
a volume.id. Also the device (production machines) are to heavy
to carry them into the IT department for whitelisting.
Signing the volume.id with password would be fine for us,
we don't need it full implemented, like signing with certificates.2 votes -
Share "wireless" screen content via USB
Dear DriveLock Team,
It would be very useful to enable a class of devices that can transfer the desktop screen content via USB (Click2Share in customer meeting rooms). For example, similar to the cell phones. Possibly this can also be released semi-automatically and not wait for the IT release.2 votes -
Enforce maximum temporary unlock time in DOC
it was possible to enforce a maximum duration for temporary unlock set by the mmc through policy settings. This capability is now gone with the DOC and it makes possible for administrators / helpdesk users to set very long time in order to please end users. It should be possible to define a maximum unlock time in order to enforce company policy like it was the case before the DOC.
1 vote -
Dateitypdefinitionen: Eigenschaften im Footer der Datei Prüfen
Um eine noch feinere Filterung von Dateitypen zu definieren, wäre eine zusätzliche Prüfung auf den "footer" der Datei in meinen Augen sinnvoll. Beispielsweise wäre hier GnuPG zu nennen wo man dann auf "--BEGIN PGP PUBLIC KEY" und "--END PGP PUBLIC KEY" prüfen kann und nur wenn beide als positiv zurückgegeben werden, die Datei auch freigegeben wird
1 vote -
USB-Laufwerke aus Regeln entfernen
Es sollte möglich sein, dass Einträge aus bestehenden Laufwerksregeln (DOC - Sicherheitskontrollen - Laufwerke - Regeln) entfernt werden können, indem man die entsprechenden Laufwerke unter DOC - Inventar - Geräte - Laufwerke vorher selektiert hat.
1 vote -
Enable Filter/Searching in old Policy
Currently when you open a old Version of a Policy lots of options in a device collection are disabled. You can't filter or export the list.
Either being able to filter the list directly or being able to export it as a csv would help us tremendously to check what devices where in that older version.
Currently our workaround requires exporting the whole policy. Creating a new temporary Policy. Loading the settings from the exported policy. And then searching for our required information. Afterwards deleting the policy.1 vote
- Don't see your idea?