Skip to main content
McAfee MVISION Cloud

Create an Application Control Policy

You can create Application Control policies to control the use of specific applications on your end users' machines, or endpoints by selecting the applications to allow and deny users from executing on their machines.

To create an Application Control Policy:

  1. Go to Policy > Application Control.
  2. Click Actions > Create Policy
    application_control_policy_1.png
  3. Name. Enter a unique name for the policy and an optional description. 
  4. Available for Continuous Evaluation. The Continuous Evaluation checkbox is activated by default. The policy is available in Continuous Evaluation mode for Security Configuration Audit.  
  5. Policy Mode. Select Observe or Enforce. 
    • Observe. In Observe Mode, all applications are allowed. Activities are reported when the applications that are not specifically selected as part of the policy are executed. You can notify users about the status of the application without preventing them from using it.
    • Enforce. In Enforce Mode, all applications that are not selected as part of your policy are blocked from users executing them. All activities are reported for the blocked applications.  
  6. Platform. Currently, only Linux is supported. 
  7. Accounts. Click to select the accounts that your policy will apply to. You can select a whole service instance, or select just a specific account under that service. If you select the whole service instance, accounts added later are selected by default. Click Done when finished. 
  8. Tags. Select any tags you want to use for your rule, and enter one or more key-value pairs. 
    application_control_policy_2.png
  9. Click Next
  10. IF Applications is one of. Click to select applications, then click Done. 
  11. THEN: If you select Observe Mode, then the policy allows all applications and creates an activity for unselected applications. If you select Enforce Mode, then the policy allows selected apps, and blocks and creates an activity for unselected apps.
    • Observe Mode. For Observe Mode, THEN is Allow Selected Applications AND Create an Event
      application_control_policy_4.png
    • Enforce Mode. For Enforce Mode, THEN is Allow Selected Applications And Block Unselected Applications AND Create an event
      application_control_policy_enforce.png
  12. Click Next
    application_control_policy_5.png
  13. Review your policy and click Save
     
  • Was this article helpful?