DriveLock Customer Forum
Information
85 results found
-
802.1x support for SSO in the PBA/Win-Login
Currently the Single-Sign-On method for the PBA or for Windows doesn't support port configuration of 802.1x.
That hinder us from using this feature.So I'd like to suggest implementing the support of a port configuration 802.1x to use the SSO in the PBA/Win-Login.
1 vote -
History diagrams showing the use of devices or applications over a period of time as line graphs
It would be nice to have a set of diagrams showing the use of devices, applications or even other assets over a period of time, as line graphs. This would support risk evaluation showing trends or values different from an expected or usual trend.
0 votes -
Support gMSA (Group Managed Service Accounts) as DES service account
As a customer I want to reduce the problem of service accounts with static passwords.
For this reason Microsoft offers a feature called gMSA (Group Managed Service Accounts).
Please implement a change, so the DES Service will support gMSA within a future release.4 votes -
Defender Management - Identify outdated AV signatures correctly
The defender dashboard should not flag hosts as having an "outdated antivirus definition" when the "Last contact (DriveLock Agent)" is overdue as well.
This indicates an "offline" wokstation rather than a not working antivirus-update and is therefore confusing.
5 votes -
Software Packages Publishing should be multi tenant aware
actually the publishing of software package through the DES server (mainly the drivelock agent) works for all configured tenant. It should be possible to published different version of the agent in different tenant.
1 voteWe plan to add the possibility that a certain agent version can be published to a specific tenant only. This feature will add flexibility for our own managed services and our partners who manage the environments for their customers.
-
DOC configuration options for agent status outdated policy
as soon as a new version of a policy is published, the computer status in the DOC change to Warning outdated policy. This should be configurable with either an offset ( policy version is not smaller than actual policy - offset ) or with a number of days ( new policy version exists since X days but still not deploy on the agent)
2 votes -
DCC/DOC: Restart agent service via remote connection
Occasionally there will be a need to manually restart the main DL agent service (enforce policy update, etc.). Suggesting to add the possibility to perform agent service restart while connected remotely using DCC or DOC. This is to be restricted to specific admins/operators only.
5 votes -
FDE: Option to remember last used username at PBA
It will be useful to have the possibility in PBA to allow saving/remembering the last used username so that user will only have to type the password. Make this an optional configuration.
3 votes -
DOC: Configurable session timeout
DOC sessions will time out after a period of inactivity. This period should be configurable.
3 votes -
DOC: Auto-refresh and auto-toggle dashboard
For SOCs and ability to display on big monitoring screens (SecOps style), DOC dashboards should have auto-refresh feature. Refresh intervals should be configurable (every 1 minute, 10 minutes, etc.). DOC dashboards should also have the ability to toggle between dashboard tabs every X amount of time (configurable).
4 votes -
DUO MFA Compatibility
We use Cisco sDUO as MFA for Windows. Unfortunately, the compatibility in connection with the PBA is missing here and thus no users are synchronized automatically.
2 votesWe continue to collect other customer's votes for this idea.
-
When I'm giving a presentation and presentation mode is active, I don't want any DriveLock messages to come up
When I'm giving a presentation and presentation mode is active, I don't want any DriveLock messages to come up. I want to be able to configure this centrally. The default setting is "No messages at all". And this must be a central general setting and not separately for each DriveLock module. With an extended possibility of this feature, the general switch can control the switches below it, if I want certain modules to show messages exceptionally after all, if I consider them important despite the presentation mode.
2 votes -
Identifying a computer using IP address (or some other unique value) vs hostname
In a customer environment where many computers share the same hostname (eg. machines in a large distributed convenience store infrastructure), it would be very useful to be able to register the computer via its IP address or some other unique value, instead of just relying on hostnames/FQDN. Perhaps a feature to allow the customer to select the IP address (or a unique agent registration ID) to be used in our management and operations consoles - without the need for scripting or a convoluted workaround.
7 votes -
Client update feedback message
It would be good to see if a client performs an update installation after the release or gives a status that something is happening.
Often we have the problem that users unintentionally turn off the devices during the drivelock installation, because they don't know that one is running. A popup or something like that would be nice.1 vote -
Multitenant overview in Management Console policy view (CSP)
With the new version 2020 we lost the ability in DriveLock Management console to have an overview on all defined CSP policies. This function was present in older version and is greatly missed by admins who controll multitenant environment.
Maybe a setting in the database can restore the view?
1 voteWe plan to improve policy management in a multi-tenant environment for our customers. Policy management and editing will be possible according to the access rights for each tenant, but independent from the selected DES-Tenant connection.
-
EDR new responses (email, snmp, ...)
actually responses definition include Powershell, Batch, Command line, Awareness and taken picture. It should be extend to E-Mail, SNMP Trap and Web-hook. At least E-Mail should be implement. That way one could decide to send E-Mail based on filtered event.
It is actually possible to send E-Mail for a complete event-type but not to define further condition under which the E-Mail should be sent ( user, folder, computer, etc, ...). Of course it is possible to write script but E-Mail is already there in the solution.
It sould be although possible to restrict the action repetition if one action (f.e…
2 votes -
Network Bridging: enable temporary deactivation
Hello,
We are looking for a solution how to disable network bridging in a simple way for a short time.
We are currently deploying only one policy and do not want to switch to a second policy just to disable bridging. Is it possible that something like this will be implemented in the future? As soon as I temporarily unlock the computer that I also have the option to disable bridging?
1 vote -
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votes -
Self-service unlock
The self-service unlock sometimes already corresponds to the desire of our customers. The customers who are traveling around the world also want to limit the unlock to time (outside working hours, weekends) etc. so that it is only valid for certain groups or people when the regular help desk is not in place. I think this is not possible in 7.9.6. Also, with unlock the 24/7 worldwide time zones should work fine.
6 votesWe will pursue this idea further, taking into account the voting in this forum, among other aspects, before including it in the detailed product backlog for the next version.
-
Mobile Encryption Application (macOS): Encryption 2 Go Container not visible without enabling hidden files visibility
When a USB flash drive encrypted with DriveLock Encryption 2 Go (container.based) is plugged in on a Mac the encrypted container is not visible on the USB flash drive. Only the DriveLock Mobile App (MEA) for Windows and macOS is visible. So, users cannot add the container to MEA to open it.
Current workarounds:
- Enable hidden files in Finder with the following command: "defaults write com.apple.finder AppleShowAllFiles YES"
- Invoke the MEA via command line and pass the path to the container as argument.Both workarounds are not an option for regular users.
3 votes
- Don't see your idea?