DriveLock Customer Forum
Information
39 results found
-
Show when a rule was last used
It would be helpful to have a filter that shows me which whitelist rule has not been used for e.g. 1 year.
The filter should be used to "clean up" the rules.13 votes -
Identifying a computer using IP address (or some other unique value) vs hostname
In a customer environment where many computers share the same hostname (eg. machines in a large distributed convenience store infrastructure), it would be very useful to be able to register the computer via its IP address or some other unique value, instead of just relying on hostnames/FQDN. Perhaps a feature to allow the customer to select the IP address (or a unique agent registration ID) to be used in our management and operations consoles - without the need for scripting or a convoluted workaround.
7 votes -
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votes -
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
5 votes -
Defender Management - Identify outdated AV signatures correctly
The defender dashboard should not flag hosts as having an "outdated antivirus definition" when the "Last contact (DriveLock Agent)" is overdue as well.
This indicates an "offline" wokstation rather than a not working antivirus-update and is therefore confusing.
5 votes -
DCC/DOC: Restart agent service via remote connection
Occasionally there will be a need to manually restart the main DL agent service (enforce policy update, etc.). Suggesting to add the possibility to perform agent service restart while connected remotely using DCC or DOC. This is to be restricted to specific admins/operators only.
5 votes -
API Erweiterung - Tool gestützte Freigabe von Devices und Applikationen
Um eine möglichst großen Teil der Aufgaben in DriveLock automatisiert und Toolbasiert ablaufen zu lassen wäre die Erweiterung der API sehr hilfreich. Besipiel hier wären die Automatisierten Freigaben von Devices und Applikationen über die API.
4 votesThe latest version (24.2) allows users to manage both Application Control and Behavior Control. Please refer to the API section of the DOC for more information. The management of drives and devices will be available in a subsequent update.
-
Security Awareness - EInstellungen für Kampagnen von der DMC in das DOC übertragen
Die Einstellungen für Awareness Kampagnen, welche in der DMC verfügbar sind, sollten auch über das DOC verfügbar sein.
Trigger: Zu welchem Ereignis soll die Kampagne angezeigt werden?
Wann/ wie oft soll die Kampagne wiederholt werden?
Benutzer muss bestätigen
Vollbild ja / nein?4 votes -
Support gMSA (Group Managed Service Accounts) as DES service account
As a customer I want to reduce the problem of service accounts with static passwords.
For this reason Microsoft offers a feature called gMSA (Group Managed Service Accounts).
Please implement a change, so the DES Service will support gMSA within a future release.4 votes -
DOC: Auto-refresh and auto-toggle dashboard
For SOCs and ability to display on big monitoring screens (SecOps style), DOC dashboards should have auto-refresh feature. Refresh intervals should be configurable (every 1 minute, 10 minutes, etc.). DOC dashboards should also have the ability to toggle between dashboard tabs every X amount of time (configurable).
4 votes -
Missing entries in Explorer based on voluntary encryption of USB sticks
Subject: Encryption 2-Go
When encrypting USB sticks on a voluntary basis (not forced), no entry appears in the Explorer (right mouse button) to initiate the encryption, also all other entries available in the Start menu or in the taskbar are missing.4 votes -
Persistant File Encryption
As a user I want to have files automatically encrypted when saved into a specific directory, but when I copy or move this file out of this directory it should stay encrypted until an authorized user explicitly stores a decrypted version or manually decrypts it.
4 votes -
More differentiation in the settings of the Self-Service unlock
We would like to enable our employees to selectively share specific drives without much effort on your part.
The "effort" should be in the configuration. So that we can configure the users a self service unlock, in which we can select e.g. specifically the sub-module "CD/DVD drive" and not as before the entire module "drives".Example of how the configuration could end up being:
Share computer
CD/DVD Drives
Max.20 minutes
Simplified modules; Hide modules & share all
Advanced Options - File Filter....-> Would increase acceptance by our users and also DL protection as the file filter and logging would…
4 votes -
Support for High Availability, Disaster Recovery with SQL Availability Group
Support for High Availability, Disaster Recovery with SQL Availability Group:
https://learn.microsoft.com/en-us/dotnet/framework/data/adonet/sql/sqlclient-support-for-high-availability-disaster-recovery#connecting-with-multisubnetfailover3 votes -
Support für Yubikeys 2FA DOC
Sehr geehrte Damen und Herren,
wir nutzen aktuell Yubikeys als 2. Faktor für unsere Admin PCs.
Das gleiche benötigen wir für das DOC.
Könnten Sie im DOC Support für Smartcards hinzufügen?
Die Yubikeys sind hier sehr viel praktischer, als die Token App.3 votes -
SB-Freigabe weiter einschränken als Geräte-Typ
In den Eigenschaften einer SB-Freigabe ist es lediglich möglich einzuschränken, ob Laufwerke / Geräte / Smartphones etc. freigegeben werden können. Es kann nicht weiter differenziert werden, welche Geräteklassen freigegeben werden können z.B. sollen nur USB-Controller freigegeben werden dürfen nicht aber Smartcard readers o.ä. .
3 votes -
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
3 votes -
BitLocker Protector Status
It should be possible to find / filter clients in the DoC for which the protector status of the BitLocker encryption has been disabled. Currently, clients with this status are displayed as OK / Green, although the devices might be vulnerable.
3 votes -
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
3 votes -
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
3 votesgeneral ability to export all lists as csv
- Don't see your idea?