DriveLock Customer Forum
Information
107 results found
-
Comment field for serial numbers, whitelist rule
The comment field for serial numbers / whitelist rule should be exported and imported if possible.
In addition, this comment field should appear in the event report or be made visible.Without this possibility the field is unsuitable for documentation.
6 votesThe export and import of whitelist rules, including comments, is already possible since version 24.2. Displaying the rule comment in the event context is not planned, as it would exceed the intended scope.
-
add hash to whitelist from log
Use the Log files received to add directly into a Policy - Application Control Hash file.
3 votes -
Laufwerkslisten übersichtlicher gestalten
Laufwerksliste wird ab 25 Einträgen unübersichtlich.
- Fenster bitte vergrößern zulassen
- Suchfilter in Liste einbauen um filtern zu können4 votes -
Security Awarness
Dem User Zugriff auf bereits durchgeführte Kampagnen gewähren, um Informationen nachhaltig zu Verfügung zu stellen
2 votes -
Prevent duplicate Serial Numbers in Whitelist Rules
When creating a new device whitelist rule e.g. für USB flash drives, there is an option to allow only USB flash drives with specific serial numbers. However, it is possible to add the exact same serial multiple times in the same rule. That makes no sense and therefore should not be possible. DriveLock should check whether or not the serial to add already exists and if so, notify the user and not add the same serial again.
5 votesDriveLock 2021.2 is available now.
-
Use SSL Connections per default when connecting to an Agent to retreive the pluged in USB devices
When I create a new whitelist rule to allow a specific USB flash drive, DriveLock allows me to connect to the client, where the USB drive is plugged in and retrieve its details (Hardware ID etc.) directly from the DMC. However, by default DriveLock attempts to connect to the client over HTTP even if HTTPS is enforced in the policy. My current workaround is to append the SSL port number to the hostname (e.g. dlclient:6065), so I can connect to the client over SSL.
It would be great if DriveLock would connect over SSL to the Agent by default, if…
3 votesWith the release 2022.2 publicly available, the status of this idea is updated to "released".
-
Pre-Boot Domain Authentification
Leider kann ein Benutzer eines neuen Gerätes, das eine Festplatten-Verschlüsselung enthält, sich nicht beim Pre-Boot an der Domäne authentifizieren. Man muss zuerst das Gerät mit einer bekannten ID starten, um dann sich von Windows abzumelden und mit der Benutzer-Kennung an der Domäne anzumelden. Da führt dazu, dass die Verschlüsselung oft ad absurdum geführt wird, da die Erstanmeldung, die lokal durchgeführt wird und über das Image kommt, mittelfristig bekannt wird.
4 votes -
There should be a Script that changes the CSP Agent Konfiguration ..
A lot a customers have an old Server for DES, even Server 2003 This I see in my daily experience. Migration of DES to a new Server where the DL Agents are statical configured on a Legacy RL in the DES environment, gives problems. With DNS alias or other trics sometimes you can do something but it would be better that we could force Agents with a GPO based computer script (at reboot) to change this for the drivelock Agents. It is complete undocumented where to change the CSP konfiguration for an Agent, so it would be nice to have…
1 voteThe command line option “drivelock -setserver” should be helpful. If the policy assignment is configured using the DriveLock Management Console, any reconfigured agent would pick up its assigned policy when first contacting the new DES.
This command can be used in any script and doesn’t require the agent to be started at this time. -
USB drive and device control on Linux
The goal with Device Control is to support more platforms, especially Linux.
USB drive and device control on Linux (of several flavors)5 votes -
USB drive and device control on macOS
The goal with Device Control should be to support more platforms, especially macOS
9 votesWith the release 2022.2 we also released our first version of our DriveLock Agent for macOS.
Our release notes and documentation available on https://drivelock.help contains more detailed information.
We will continue to improve the feature set in the future and add more and more capabilities.
The status of this idea is updated to "released".
-
Provide a modern Web UI for both in the cloud and on-prem
The goal is to provide a modern Web UI that allows more possibilities for administration and visualization. The Web UI - aka DriveLock Operation Center (DOC) will initially be available as DriveLock managed service, but will be successively merged with the on-premise offering beginning with DL 2019.1. We want to "webify" both existing and new user stories.
Especially in the EDR environment, a Web UI is a good choice when it comes to event correlation, anomaly detection, investigation and advanced threat hunting.
- Ability to make DOC available to existing customers as an additional or alternative UI
- General Ability…1 vote -
Bitlocker2Go Implementation
Die Möglichkeit, alternativ zu DL2Go, externe Datenträger mit Bitlocker2Go verschlüsseln zu lassen, um die bestehenden Beschränkungen von DL2Go zu umgehen.
6 votes -
Sort user overview alphabetically in DCC when setting the Security Settings
Die Benutzerübersicht im DCC alphabetisch sortieren, die Suche wäre damit einfacher.
1 votealready available with 2019.1
-
Lock settings unique ID
It should be possible to create a unique assignment to the used rule from DriveLock events (Drive locked, Drive accessed, etc). Currently the ID 0000000-C0D0-C0D0-0001-00000000000X is used without being able to clearly identify the device category.
8 votesThe DOC now always displays the associated rule in the Detail View in the Related Object List block.
-
Bildschirmtastatur Surface Pro
Zum Login wird die Bildschirmtastatur vom Surface Pro benötigt.
Momentan wird dies seitens DriveLock leider nicht unterstützt und zum Login ist aktuell immer eine externe Tastatur (TypeCover oder USB) nötig.4 votesReleased with DriveLock 2019.2
-
Windows Defender Antivirus Integration
For years, DriveLock has offered a great anti virus integration for removable drives which was free of charge. It has been removed in version 7.8.x .
This feature was very convenient and could be reintroduce together with Windows Defender Antivirus (WDA). All the pieces for the integration should be there already.
4 votes -
NTFS Write support for DriveLock MEA (Mobile Encryption Application) without installation
It should be possible to have read and write capabilities when using an NTFS file system in a DL container in combination with the MEA.
Currently you need to install the MEA on a client to have write access. For a lot of people without admin rights, the installation of the MEA is not possible.
Currently you need to use NTFS file system, when you want to us containers bigger than 4 GB, because FAT is only supporting 4 GB.
And exFAT is currently not supported.9 votespart of 24.1
-
DriveLock database installation wizard - Support a separate SQL login
If you want to create/update the database during an installation or an update, then the logged in Windows user must have sufficient rights for the administration of the SQL databases.
If this is not the case, the installation/update cannot be completed cleanly.
There is no other way than to create/update the database in a separate step using scripts.
At the moment it is also not possible to create/update the database via a pure SQL user.1 voteReleased with DriveLock 2021.1
-
Bemerkungsfeldes im Dialogfeld „Eigenschaften einer Hashdatenbank“
Wir bitte um Erweiterung des Bemerkungsfeldes im Dialogfeld „Eigenschaften einer Hashdatenbank“ auf mind. 2048, besser noch 4096 Zeichen.
Begründung:
Wir schreiben in die Bemerkung i.d.R. die Namen der gescannten Softwarepakete und das Scandatum bzw. den Versionsstand. Um dort 50 Einträge speichern zu können würden ca. 2048 Zeichen benötigt. Für 100 Einträge wären ca. 4096 Zeichen notwendig.2 votes -
Set a Copy Limit on users and user groups that applies to appropriate device classes
As an administrator, I want to set a Copy Limit on users and user groups. The limit should be based on a 24-hour period starting at midnight for the endpoint. The copy limit resets after 24 hours. The copy limit only applies to appropriate device classes.
The Copy Limit functionality is a popular feature in the market and required for fielded product parity1 vote
- Don't see your idea?