DriveLock Customer Forum
Information
41 results found
-
COM Port Management
We would like to control and manage COM Ports (especially Virtual COM Ports, USB-Serial adapters) in the same way per whitelist rules equal to Drives or other devices like Smartphones, HID devices etc.
In short, possibility of User and Computer combination.
1 vote -
Enforce maximum temporary unlock time in DOC
it was possible to enforce a maximum duration for temporary unlock set by the mmc through policy settings. This capability is now gone with the DOC and it makes possible for administrators / helpdesk users to set very long time in order to please end users. It should be possible to define a maximum unlock time in order to enforce company policy like it was the case before the DOC.
1 votePM-1880
-
Offer the possibility to remove the "blur" effect in the PBA
It should be possible to remove the "blur" effect in the PreBoot Authentication.
For customers who, for example, store a background image with company data in case the device is stolen / lost, this is not practical.
The "Show Pre-Boot User Information Message" feature is not really useful here, as probably only a few people will click on the small message icon at the bottom right of the screen. Alternatively, of course, this feature could be reworked to make this more present.5 votes -
Autostart/delay/non-autoplay of awareness campaigns
We have set the trigger for "start campaign" to "at logon".
Logon can take up to one minute for us. But the video sometimes starts already in the background, before the desktop is visible.
If the campaign consists of a 3 minute video, the user misses 1/3.
We need a way to to set a delay (1-X Minutes) for the "immediate start".
An alternative way would be that the window apperas and the user has to click the "play" button himself.
2 votesWe will check and evaluate the options technically.
-
Controlling Defender Core Isolation with Drivelock Policy Setting
It should be possible to control the memory integrity setting of the Core Isolation Feature within the Windows Defender Antivirus via Drivelock policy.
In addition, you should be able to hide the feature for your clients.
3 votes -
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
3 votes -
Selectable positioning of the dialog box for user notifications of the agents
It would be helpful for the user if the agent user notification dialog could be moved to a selectable position. Currently, this pops up in the lower right corner.
On devices with visualizations for operation in the plant area, operation and acknowledgement buttons of the UI are blocked in this situation.
It would be convenient to define the positions left-up, left-down, etc. via configuration in the MMC or via integration of the handling of the window position in the agent as last-position-as-default.1 voteWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Netzwerkconnection anhand des primären DNS-Suffix bei jedem Verbindungsaufbau
Wir würden gerne die Netzwerkrichtlinien von Drivelock nutzen, damit die verwalteten Clients sich ausschließlich mit unserem Domänennetzwerk verbinden und im laufenden Betrieb auch die Netzwerkschnittstellen wechseln können. Dies würden wir gerne anhand des primären DNS-Suffix abfragen.
Momentan gibt es diese Möglichkeit bereits, doch wird diese Abfrage lediglich einmalig abgefragt und nicht bei jedem erneuten Verbindungsaufbau.
Wir wollen unseren Clients ermöglichen, dass sie sich sowohl über Wlan, als auch über Kabel verbinden und auch während einer Sitzung wechseln können.
Um dies zu erreichen, müsste unter dem Kartenreiter "Action" im Eigenschaftenfenster der Netzwerkrichtlinien eine Auswahl ähnlich wie "Disable network connection until new…3 votes -
Support Imprivata credential provider
For synchronization of users/credentials and for a Windows SSO after successful authentication of the user at the DriveLock PBA, a connection of the DriveLock Credential Provider to the Credential Provider of the Imprivata Agent is required (Credential Provider Wrapper).
1 vote -
BitLocker Protector Status
It should be possible to find / filter clients in the DoC for which the protector status of the BitLocker encryption has been disabled. Currently, clients with this status are displayed as OK / Green, although the devices might be vulnerable.
3 votes -
Ability to remove management audit events via Policy
There are multiple events which are logged in the console, like Event-ID 910 (DriveLock Management Console started) which are not necessary. It would be good to be able to remove them with the DriveLock Management Console like the other events until Event-ID ~750
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Format BitLocker2Go USB removables like in Encryption2Go
In Encryption2Go it is possible to format the USB removables before encryption and keep the data if necessary - these options are completely missing in BitLocker2Go.
4 votesWe will follow up on this idea, taking into account the voting in this forum, among other aspects, for inclusion in the detailed product backlog for the next version.
-
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
DLSupportAgent.exe
Der "DLSupportAgent.exe" sollte via Kommandozeile bedienbar sein, so dass die Aktivierung nicht zwingend grafisch erfolgen muss. Es sollten die Kommandozeile und die Windows-Powershell unterstützt werden:
z.B. DLSupportAgent.exe -Step [1/2/3/4/5/6/7]
The "DLSupportAgent.exe" should support a interaction via command line (cmd / Windows-Powershell) so that there is no need for a graphical access to the traget system.
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
5 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Configure automatic temporary unlock in the future (from time x to time y)
We have repeated requests for USB releases for specific time periods in the future. Would it be possible in the helpdesk temporary unlock window to select a period in the future with time and date specification?
1 voteWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
DOC deployment installation option should support DriveLock groups
In the new DOC 21.2, it is possible to deploy new agent on computer. It would be very nice to be able to use drivelock groups here instead of a static list of PCs.
2 votes -
3rd party events should be directly sent be SMTP/SNMP
it seams 3rd party event can only be send to the DES as oppose to DriveLock events that cab be send directly by the agent through SNMP/SMTP. Ths should be the case for 3rd party events too.
2 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Multiselection in white list rules under devices is not possibe
In policy editor, it is possible to multi select WLR under drives in order to move them or delete them but it is not possible to do the very same thing in the devices category. It will be nice to have the same functionality.
2 votes -
Alert frequency based rule
DriveLock should allow the creation of alert based on frequency and time. Ideally with boolean logic f.e:
-if event happens (more¦less) X time within Y minutes (most important one)
-if event happens between X am and Y pm
-if event does not happen between X am and Y pm
-if event happened at least X minutes after the last event
-if event not happened after X minutes of the previous event3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
- Don't see your idea?