DriveLock Customer Forum
Information
39 results found
-
Show when a rule was last used
It would be helpful to have a filter that shows me which whitelist rule has not been used for e.g. 1 year.
The filter should be used to "clean up" the rules.13 votesIn preparation for another important new feature, we are updating our internal database model in such way, that it also will help us to implement this idea more easily.
We will have a closer look at this idea, once the changes are implemented and tested thoroughly. -
USB tethering
Add an option to block connecting to the Internet by using usb tethering on your smartphone (android and apple).
Usb tethering creates a Remote NDIS based Internet Sharing Device.
11 votes -
Identifying a computer using IP address (or some other unique value) vs hostname
In a customer environment where many computers share the same hostname (eg. machines in a large distributed convenience store infrastructure), it would be very useful to be able to register the computer via its IP address or some other unique value, instead of just relying on hostnames/FQDN. Perhaps a feature to allow the customer to select the IP address (or a unique agent registration ID) to be used in our management and operations consoles - without the need for scripting or a convoluted workaround.
7 votes -
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votes -
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
5 votes -
Defender Management - Identify outdated AV signatures correctly
The defender dashboard should not flag hosts as having an "outdated antivirus definition" when the "Last contact (DriveLock Agent)" is overdue as well.
This indicates an "offline" wokstation rather than a not working antivirus-update and is therefore confusing.
5 votes -
DCC/DOC: Restart agent service via remote connection
Occasionally there will be a need to manually restart the main DL agent service (enforce policy update, etc.). Suggesting to add the possibility to perform agent service restart while connected remotely using DCC or DOC. This is to be restricted to specific admins/operators only.
5 votes -
Security Awareness - EInstellungen für Kampagnen von der DMC in das DOC übertragen
Die Einstellungen für Awareness Kampagnen, welche in der DMC verfügbar sind, sollten auch über das DOC verfügbar sein.
Trigger: Zu welchem Ereignis soll die Kampagne angezeigt werden?
Wann/ wie oft soll die Kampagne wiederholt werden?
Benutzer muss bestätigen
Vollbild ja / nein?4 votes -
Support gMSA (Group Managed Service Accounts) as DES service account
As a customer I want to reduce the problem of service accounts with static passwords.
For this reason Microsoft offers a feature called gMSA (Group Managed Service Accounts).
Please implement a change, so the DES Service will support gMSA within a future release.4 votes -
Missing entries in Explorer based on voluntary encryption of USB sticks
Subject: Encryption 2-Go
When encrypting USB sticks on a voluntary basis (not forced), no entry appears in the Explorer (right mouse button) to initiate the encryption, also all other entries available in the Start menu or in the taskbar are missing.4 votes -
Persistant File Encryption
As a user I want to have files automatically encrypted when saved into a specific directory, but when I copy or move this file out of this directory it should stay encrypted until an authorized user explicitly stores a decrypted version or manually decrypts it.
4 votes -
Support for High Availability, Disaster Recovery with SQL Availability Group
Support for High Availability, Disaster Recovery with SQL Availability Group:
https://learn.microsoft.com/en-us/dotnet/framework/data/adonet/sql/sqlclient-support-for-high-availability-disaster-recovery#connecting-with-multisubnetfailover3 votes -
MQTT (Port 8883) using an 30years SelfSigned Certificate
MQTT Port 8883 is using an 30years (running time) SelfSigned Certificate, which will be not replaced by ChangeDesCert.exe
Please implement a Feature within ChangeDesCert.exe tool that
MQTT Port 8883 will use the same SSL certificate, used by the other DES Server TCP Ports (6667 and 4568)Our Company Security Audit (vulnerability scan) detected the Port 8883 with this old SelfSigned Certificate behind.
3 votes -
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
3 votes -
BitLocker Protector Status
It should be possible to find / filter clients in the DoC for which the protector status of the BitLocker encryption has been disabled. Currently, clients with this status are displayed as OK / Green, although the devices might be vulnerable.
3 votes -
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
3 votes -
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
3 votesgeneral ability to export all lists as csv
-
FDE: Option to remember last used username at PBA
It will be useful to have the possibility in PBA to allow saving/remembering the last used username so that user will only have to type the password. Make this an optional configuration.
3 votes -
DOC: Auto-refresh and auto-toggle dashboard
For SOCs and ability to display on big monitoring screens (SecOps style), DOC dashboards should have auto-refresh feature. Refresh intervals should be configurable (every 1 minute, 10 minutes, etc.). DOC dashboards should also have the ability to toggle between dashboard tabs every X amount of time (configurable).
3 votes -
Mobile Encryption Application (macOS): Encryption 2 Go Container not visible without enabling hidden files visibility
When a USB flash drive encrypted with DriveLock Encryption 2 Go (container.based) is plugged in on a Mac the encrypted container is not visible on the USB flash drive. Only the DriveLock Mobile App (MEA) for Windows and macOS is visible. So, users cannot add the container to MEA to open it.
Current workarounds:
- Enable hidden files in Finder with the following command: "defaults write com.apple.finder AppleShowAllFiles YES"
- Invoke the MEA via command line and pass the path to the container as argument.Both workarounds are not an option for regular users.
3 votes
- Don't see your idea?