DriveLock Customer Forum
Information
72 results found
-
SB-Freigabe weiter einschränken als Geräte-Typ
In den Eigenschaften einer SB-Freigabe ist es lediglich möglich einzuschränken, ob Laufwerke / Geräte / Smartphones etc. freigegeben werden können. Es kann nicht weiter differenziert werden, welche Geräteklassen freigegeben werden können z.B. sollen nur USB-Controller freigegeben werden dürfen nicht aber Smartcard readers o.ä. .
3 votes -
Ability to create rule specific Usage Policy text
As an Admin I have a wide variety of use cases for Usage Policys. Sadly right now it seems I can only set one Custom Text for the Usage Policy.
In a optimal situation I would like to display different Text of the Usage Policy depending on what rule is triggered.
Example:
Rule 1 is triggered for HID and tells the user HID devices are allowed if they have been provided by the Company.
Rule 2 is triggered for a special Testing Group within the organisation for every printer that is usually blocked. This tells them they can use this…2 votes -
Inventory Daten dediziert löschen
DriveLock sollte die Möglichkeit besitzen, Inventorydaten dediziert zu löschen. Hierbei sollten zwischen Drives / Devices / Applikationen usw. unterschieden werden können.
In Kundenumgebungen die schon über mehrere Versionen hinweg bestehen, ist die Auswertung der Daten derzeit einfach zu unübersichtlich. DIe Möglichkeit den Rechner aus dem Operations Center zu löschen und danach das Inventar neu einzulesen ist m.E. nicht ausreichend.5 votes -
Analog zur Cross-Network Protection bei WIFI soll diese auch bei 2 LAN Verbindungen blockieren können
Drivelock bietet bereits die Funktionalität bei einer bestehenden Ethernetverbindung WIFI zu blockieren. (adminhdb S136 4.1.2). Der Wunsch ist nun das bei einer bestehenden EthernetVerbindung eine weitere EthernetVerbindung (egal welcher BUS) automatisch blockiert werden kann, um so auch ein Bridging mittels 2 LAN Adaptern zu unterbinden.
1 vote -
Report Column Values change to GB or MB instead of Bytes.
When we export a report, we currently only view the data numerical values in bytes.
Can we have the option to change the data values in a column to MB or GB instead of bytes.
2 votes -
Autostart/delay/non-autoplay of awareness campaigns
We have set the trigger for "start campaign" to "at logon".
Logon can take up to one minute for us. But the video sometimes starts already in the background, before the desktop is visible.
If the campaign consists of a 3 minute video, the user misses 1/3.
We need a way to to set a delay (1-X Minutes) for the "immediate start".
An alternative way would be that the window apperas and the user has to click the "play" button himself.
2 votesWe will check and evaluate the options technically.
-
DOC Should integrate AD attributes first- and last-
For company using number as login name it is not easy for DOC admin to identifiy on which PC a user is working. The DOC should integrates in the views operation>computers and operation>users the AD attributes firstname and lastname in order to be able to quickly identify loginname with real user. The column chooser functionallity should of course offers this two new attributes to be shown.
3 votes -
Selectable positioning of the dialog box for user notifications of the agents
It would be helpful for the user if the agent user notification dialog could be moved to a selectable position. Currently, this pops up in the lower right corner.
On devices with visualizations for operation in the plant area, operation and acknowledgement buttons of the UI are blocked in this situation.
It would be convenient to define the positions left-up, left-down, etc. via configuration in the MMC or via integration of the handling of the window position in the agent as last-position-as-default.1 vote -
Ability to remove management audit events via Policy
There are multiple events which are logged in the console, like Event-ID 910 (DriveLock Management Console started) which are not necessary. It would be good to be able to remove them with the DriveLock Management Console like the other events until Event-ID ~750
3 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Offline scan option for MS defender should be included in the list of actions in DOC
Actually the DOC offers for MS Defender scans: quick, full an drives. An additional option should be add to support the offline scan MS defender supports.
3 votes -
DOC reports - export to spreadsheet format
I think it would be good to allow DOC reports (in list format) to be exportable to spreadsheet format, not just in pdf format.
4 votesgeneral ability to export all lists as csv
-
Drivelock Firewall logs
The computer logs should be extended by a special firewall event list. the list should have columns and layout like in common firewalls from sophos, fortinet, etc..
The list should contain source ip, hostname, port
destination ip, hostname, port
requested url
timestampsthese events should be available in computer details and in a global list where I can search for computer name, port, etc...
our hardware firewalls can only monitor traffic (allowed and denied request) between firewall zones. drivelock could fill the gap and list traffic between hosts in a zone.
also it is much easier to find blocked ports…
5 votes -
Alert frequency based rule
DriveLock should allow the creation of alert based on frequency and time. Ideally with boolean logic f.e:
-if event happens (more¦less) X time within Y minutes (most important one)
-if event happens between X am and Y pm
-if event does not happen between X am and Y pm
-if event happened at least X minutes after the last event
-if event not happened after X minutes of the previous event3 votesEvent happens more than x times in y seconds is already possible
-
Enc2Go should be able to reformat new USB Sticks to exFAT, even Sticks are already formatted to NTFS or exFat
Today the Encryption to Go feature is able to reformat the physical USB sticks only from FAT32 -> to exFat or NTFS.
We want to have a feature that the USB stick will be always reformatted for example to exFat, regardless which Filesystem is current used by the USB stick. This feature would help to always cleanup USB sticks during container creation, and would help to move from NTFS formatted sticks back to exFat. Which is otherwise a manual task (not possible in a large environment).2 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
802.1x support for SSO in the PBA/Win-Login
Currently the Single-Sign-On method for the PBA or for Windows doesn't support port configuration of 802.1x.
That hinder us from using this feature.So I'd like to suggest implementing the support of a port configuration 802.1x to use the SSO in the PBA/Win-Login.
1 vote -
History diagrams showing the use of devices or applications over a period of time as line graphs
It would be nice to have a set of diagrams showing the use of devices, applications or even other assets over a period of time, as line graphs. This would support risk evaluation showing trends or values different from an expected or usual trend.
0 votes -
Defender Management - Identify outdated AV signatures correctly
The defender dashboard should not flag hosts as having an "outdated antivirus definition" when the "Last contact (DriveLock Agent)" is overdue as well.
This indicates an "offline" wokstation rather than a not working antivirus-update and is therefore confusing.
5 votes -
Software Packages Publishing should be multi tenant aware
actually the publishing of software package through the DES server (mainly the drivelock agent) works for all configured tenant. It should be possible to published different version of the agent in different tenant.
1 voteWe plan to add the possibility that a certain agent version can be published to a specific tenant only. This feature will add flexibility for our own managed services and our partners who manage the environments for their customers.
-
DOC configuration options for agent status outdated policy
as soon as a new version of a policy is published, the computer status in the DOC change to Warning outdated policy. This should be configurable with either an offset ( policy version is not smaller than actual policy - offset ) or with a number of days ( new policy version exists since X days but still not deploy on the agent)
2 votes -
DCC/DOC: Restart agent service via remote connection
Occasionally there will be a need to manually restart the main DL agent service (enforce policy update, etc.). Suggesting to add the possibility to perform agent service restart while connected remotely using DCC or DOC. This is to be restricted to specific admins/operators only.
5 votes
- Don't see your idea?