DriveLock Customer Forum
Information
116 results found
-
Persistant File Encryption
As a user I want to have files automatically encrypted when saved into a specific directory, but when I copy or move this file out of this directory it should stay encrypted until an authorized user explicitly stores a decrypted version or manually decrypts it.
4 votes -
Syntax-basierte Benachrichtungsregeln - DOC
Aktuell können Benachrichtigungsregeln (E-Mail) im DOC nur auf Basis der Event ID getriggert werden.
Sinnvoll wäre die Möglichkeit, innerhalb der ID auf spezifische Syntaxinhalte filtern und alarmieren zu können.
BSP: EVENT ID 130 - The device HP LaserJet Pro M404-M405 was connected to the computer.;Device type: Media player.
Alle anderen Events zur ID130 sollen dann keine E-Mail Benachrichtigung im DOC zur Folge haben.
Filterung im Bereich der Eventgenerierung selbst, würde die ID nur einschränken. Es würden Informationen verloren gehen.3 votes -
Security Awareness - EInstellungen für Kampagnen von der DMC in das DOC übertragen
Die Einstellungen für Awareness Kampagnen, welche in der DMC verfügbar sind, sollten auch über das DOC verfügbar sein.
Trigger: Zu welchem Ereignis soll die Kampagne angezeigt werden?
Wann/ wie oft soll die Kampagne wiederholt werden?
Benutzer muss bestätigen
Vollbild ja / nein?3 votes -
MQTT (Port 8883) using an 30years SelfSigned Certificate
MQTT Port 8883 is using an 30years (running time) SelfSigned Certificate, which will be not replaced by ChangeDesCert.exe
Please implement a Feature within ChangeDesCert.exe tool that
MQTT Port 8883 will use the same SSL certificate, used by the other DES Server TCP Ports (6667 and 4568)Our Company Security Audit (vulnerability scan) detected the Port 8883 with this old SelfSigned Certificate behind.
3 votes -
new computer attribut to identify location
thanks to MQTT implementation it is now possible to know in the DOC if computers are alive and to communicate with them whereever they are (LAN, intertnet, home, ...). It would be nice to have a computer attribute available in the DOC computer view to identify where the PC is. The policy definition "network location" could be used for this.
3 votes -
Freitexteingabe bei Awarenesskampagnen
Es gibt ja schon die Möglichkeit, bei Security Awareness Kampagnen den User zu "nötigen", einen Haken zu setzen bzw. eine gewisse Zeit ein Bild zu betrachten.
Was ist von der Idee zu halten, dem User nach gesehenem Video / gelesenem Text / betrachtetem Bild ein Freitext-Feld mit der Antwort auf eine Frage befüllen zu lassen?
Frage und Antwort werden dokumentiert und können ggf. im Nachgang besprochen werden.3 votes -
Inventory Daten dediziert löschen
DriveLock sollte die Möglichkeit besitzen, Inventorydaten dediziert zu löschen. Hierbei sollten zwischen Drives / Devices / Applikationen usw. unterschieden werden können.
In Kundenumgebungen die schon über mehrere Versionen hinweg bestehen, ist die Auswertung der Daten derzeit einfach zu unübersichtlich. DIe Möglichkeit den Rechner aus dem Operations Center zu löschen und danach das Inventar neu einzulesen ist m.E. nicht ausreichend.3 votes -
Security Awareness Statistik in DOC aufräumen oder in Arcive verschieben
Statistics in DOC
Arcify or clean up to get a better overview3 votes -
Controlling Defender Core Isolation with Drivelock Policy Setting
It should be possible to control the memory integrity setting of the Core Isolation Feature within the Windows Defender Antivirus via Drivelock policy.
In addition, you should be able to hide the feature for your clients.
3 votes -
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
3 votes -
Netzwerkconnection anhand des primären DNS-Suffix bei jedem Verbindungsaufbau
Wir würden gerne die Netzwerkrichtlinien von Drivelock nutzen, damit die verwalteten Clients sich ausschließlich mit unserem Domänennetzwerk verbinden und im laufenden Betrieb auch die Netzwerkschnittstellen wechseln können. Dies würden wir gerne anhand des primären DNS-Suffix abfragen.
Momentan gibt es diese Möglichkeit bereits, doch wird diese Abfrage lediglich einmalig abgefragt und nicht bei jedem erneuten Verbindungsaufbau.
Wir wollen unseren Clients ermöglichen, dass sie sich sowohl über Wlan, als auch über Kabel verbinden und auch während einer Sitzung wechseln können.
Um dies zu erreichen, müsste unter dem Kartenreiter "Action" im Eigenschaftenfenster der Netzwerkrichtlinien eine Auswahl ähnlich wie "Disable network connection until new…3 votes -
BitLocker Protector Status
It should be possible to find / filter clients in the DoC for which the protector status of the BitLocker encryption has been disabled. Currently, clients with this status are displayed as OK / Green, although the devices might be vulnerable.
3 votes -
Allow multi-factor authentication (2FA/MFA) for DOC login
Drivelock is a security tool connected to the Active Directory.
It should be possible to have consoles with dual authentication (MFA).
For me it is mandatory to avoid an hacker to do what he wants.3 votesWe have added this requirement to our product backlog.
-
Ability to remove management audit events via Policy
There are multiple events which are logged in the console, like Event-ID 910 (DriveLock Management Console started) which are not necessary. It would be good to be able to remove them with the DriveLock Management Console like the other events until Event-ID ~750
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
3 votesgeneral ability to export all lists as csv
-
DLSupportAgent.exe
Der "DLSupportAgent.exe" sollte via Kommandozeile bedienbar sein, so dass die Aktivierung nicht zwingend grafisch erfolgen muss. Es sollten die Kommandozeile und die Windows-Powershell unterstützt werden:
z.B. DLSupportAgent.exe -Step [1/2/3/4/5/6/7]
The "DLSupportAgent.exe" should support a interaction via command line (cmd / Windows-Powershell) so that there is no need for a graphical access to the traget system.
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Alert frequency based rule
DriveLock should allow the creation of alert based on frequency and time. Ideally with boolean logic f.e:
-if event happens (more¦less) X time within Y minutes (most important one)
-if event happens between X am and Y pm
-if event does not happen between X am and Y pm
-if event happened at least X minutes after the last event
-if event not happened after X minutes of the previous event3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
API implementation
In order to enhance integration with workflow tools in a company to automate certain processes (f.e. update whitelists in DL policies, etc), it would be interesting to have available an API in DES
3 votesWe have already started to implement first architectural changes in our backend which are mandatory for such a feature set. These changes will be continued and introcuded step by step in the next releases.
-
FDE: Option to remember last used username at PBA
It will be useful to have the possibility in PBA to allow saving/remembering the last used username so that user will only have to type the password. Make this an optional configuration.
3 votes
- Don't see your idea?