DriveLock Product Feedback & Ideas
Share your ideas for DriveLock.
Teilen Sie Ihre Ideen mit DriveLock.
135 results found
-
Allow multi-factor authentication (2FA/MFA) for DOC login
Drivelock is a security tool connected to the Active Directory.
It should be possible to have consoles with dual authentication (MFA).
For me it is mandatory to avoid an hacker to do what he wants.3 votes23.2
-
Ability to remove management audit events via Policy
There are multiple events which are logged in the console, like Event-ID 910 (DriveLock Management Console started) which are not necessary. It would be good to be able to remove them with the DriveLock Management Console like the other events until Event-ID ~750
3 votesalready released with 2024.2 and can be configured in the backend settings in the DOC
-
Ability to support two password protectors like Encryption2Go
please add for Bitlocker2Go the ability to support two password protectors like Encryption2Go.
Currently the product seems to offer the usage of an administrator password in combination with a user password.
Drivelock Support explained that currently only 1 Passwort Protektor is supported3 votesWith the release 2022.2 publicly available, the status of this idea is updated to "released".
-
API implementation
In order to enhance integration with workflow tools in a company to automate certain processes (f.e. update whitelists in DL policies, etc), it would be interesting to have available an API in DES
3 votesThe DriveLock backend already has a very comprehensive API and is extensively documented. We are constantly working on the extension.
-
Additional report period "previous day
In the DCC, regular reports can be generated and distributed to specific recipients per May.
We need to generate reports on a daily basis, which is why a "previous day" report period would be desirable. Currently, the smallest selectable report period is "previous week", which results in each event having six duplicates in reports.3 votes -
Suchen nach Computer/User in den Events
Ich würde gerne im DOC in der Eventsansicht in dem Feld "Filter by Short test" auch gerne direkt nach Computern/ Usern suchen können.
3 votesReleased with DriveLock 2020.2
-
add hash to whitelist from log
Use the Log files received to add directly into a Policy - Application Control Hash file.
3 votes -
Mobile Encryption Application (macOS): Encryption 2 Go Container not visible without enabling hidden files visibility
When a USB flash drive encrypted with DriveLock Encryption 2 Go (container.based) is plugged in on a Mac the encrypted container is not visible on the USB flash drive. Only the DriveLock Mobile App (MEA) for Windows and macOS is visible. So, users cannot add the container to MEA to open it.
Current workarounds:
- Enable hidden files in Finder with the following command: "defaults write com.apple.finder AppleShowAllFiles YES"
- Invoke the MEA via command line and pass the path to the container as argument.Both workarounds are not an option for regular users.
3 votes -
Use SSL Connections per default when connecting to an Agent to retreive the pluged in USB devices
When I create a new whitelist rule to allow a specific USB flash drive, DriveLock allows me to connect to the client, where the USB drive is plugged in and retrieve its details (Hardware ID etc.) directly from the DMC. However, by default DriveLock attempts to connect to the client over HTTP even if HTTPS is enforced in the policy. My current workaround is to append the SSL port number to the hostname (e.g. dlclient:6065), so I can connect to the client over SSL.
It would be great if DriveLock would connect over SSL to the Agent by default, if…
3 votesWith the release 2022.2 publicly available, the status of this idea is updated to "released".
-
Encryption
If the encrypted devices hang in the own network, the current credentials of valid users should be queried and be able to be used for the login (topic, among other things frequently changing users at a device, which would have to log in here for the first time). AD interface with existing network, valid network connection to allow user with valid AD account the first login (or after password change).
3 votesReleased with DriveLock 2021.1
-
Visualize endpoints in groups
Using the web UI in the cloud I like to group my endpoints by dynamic or static properties and visualize this in a structured view
3 votes -
Ability to create custom groups
As an admin I want to be able to create custom groups for computers or users that I can use for individual policy deployment in my environment
3 votes -
Anzeige inaktiver Whitelist-Regeln
Anzeige von Whitelist-Regeln, die über einen längeren Zeitraum nicht genutzt wurden. Dadurch können diese Regeln gezielt überprüft und bei Bedarf deaktiviert oder gelöscht werden. Ziel ist eine bessere Übersicht und einfachere Pflege der Whitelist.
2 votesThis feature was released with 2025.1 already. There is another UserVoice entry: https://drivelock.uservoice.com/forums/913885/suggestions/36036256
Details: The following has been added to the rules display in DOC:
- An optional column showing when an event was last generated by this rule.
- A column in the list of devices/drives for a rule showing when an event was generated for this device/drive in connection with this rule.
- An additional detail view showing all events generated on agents by executing these rules.
Please also refer to https://drivelock.help/versions/2025_1/web/en/complete/content/whatsnew/whatsnew.htm
-
Bitlocker Schutzstatus im DOC
Der Bitlocker Schutzstatus ist im DOC nicht ersichtlich. Für BIOS muss Bitlocker temporär deaktiviert werden, z.B. über den Befehl Suspend-BitLocker -MountPoint "C:" -RebootCount 0. Wenn dann vergessen wird den Schutzstatus wieder zu aktivieren, ist das nicht ersichtlich. Das DOC zeigt zwar die Verschlüsselung bei 100% und TPM aktiv, der Schutzstatus wird aber nicht engezeigt. Dies sollte ersichtlich sein und es sollte eine Aktion zum Aktivieren des Schutzstatus geben.
2 votesPart of 2025.1
-
Richtlinienlöschung nach definierter Offline Zeit
Hallo zusammen,
Jetzt habe ich mit dem Parameter "Globale Einstellungen/Netzwerkprofile/Einstellungen/Regelmässige Online-Tet…" nochmal herumgespielt, um herauszufinden welche Richtlinie gelöscht wird.
Leider wurden ALLE Richtlinien gelöscht. Nicht nur eine unbedeutende LEERE Richtlinie, was ich mir gewünscht habe, weshalb ich diesen Parameter auch extra NUR dort gesetzt habe.
Somit ist der PC jetzt eigentlich absolut UNGESCHÜTZTMeine Frage wäre jetzt, gibt es eine Möglichkeit das löschen auf eine einzelne Richtline zu begrenzen??
Denn die „Default Policy“ sperrt erstmal ALLES, diese Dürfte NIEMALS entfernt werden.
Allerdings wäre es praktisch, wenn man z.B. nach 7 Tagen Offlinezeit die Richtlinie „Freigaben“ löschen könnte.
Indem man den…2 votesPart of 2025.1
-
COM Port Management
We would like to control and manage COM Ports (especially Virtual COM Ports, USB-Serial adapters) in the same way per whitelist rules equal to Drives or other devices like Smartphones, HID devices etc.
In short, possibility of User and Computer combination.
2 votespart of 24.1
-
Enforce maximum temporary unlock time in DOC
it was possible to enforce a maximum duration for temporary unlock set by the mmc through policy settings. This capability is now gone with the DOC and it makes possible for administrators / helpdesk users to set very long time in order to please end users. It should be possible to define a maximum unlock time in order to enforce company policy like it was the case before the DOC.
2 votes2025.2
-
USB-Laufwerke aus Regeln entfernen
Es sollte möglich sein, dass Einträge aus bestehenden Laufwerksregeln (DOC - Sicherheitskontrollen - Laufwerke - Regeln) entfernt werden können, indem man die entsprechenden Laufwerke unter DOC - Inventar - Geräte - Laufwerke vorher selektiert hat.
2 votesreleased with 2025.1
-
Defender management / Send e-mail alert from the server-side
I would like to receive an e-mail alert when a "Severe" Defender-event is fired. This might be possible to be done via SMTP on the agent/client which seems a little odd in 2023.
Such E-Mail-Alerts should be configurable for certain events on the server-side (Web-Interface).
2 votes -
AppControl WhileList rules
New AppControl WhileList rules, created from Events (from DOC Event Report) should not only go
hardcoded into the so called "Permanent unlock policy", but ist should
be also possible to define another (existing) DriveLock Policy as a target for this rule.2 votespart of 24.1
- Don't see your idea?