Application Control/Whitelisting

Posted on 2010-08-24
Medium Priority
Last Modified: 2012-05-10
I'm trying to look for a solution to removing admin rights from end users. I've looked at Beyond Trust and then started looking into Application Whitelisting vendors such as Bit9, Lumension, and McAfee. I'm wanting to see if anyone out here has used any of these solutions or any others for the same reasons or if they have suggestions. Application whitelisting looks to be a more secure and has many more features for us to control our endpoints as they also have Device Control which would be an added bonus. Any input with your experiences removing admin rights or using application whitelisting would be greatly appreciated.
Question by:hpmhelpdesk
  • 2

Expert Comment

ID: 33514172
What have you done so far to limit your users? did you try giving them user level access by changing it under the users in control panel? what kind of limitations are you looking at? In my situations, normally I will drop them to the lowest permissions so that nobody can change any of the computer's contents. Even going as far as preventing access to the local drive. All files and my documents are stored in a network drive.

Author Comment

ID: 33514839
We are in a domain and so far they have no limits locally but we are looking to change that to user level access and then either using Beyond Trust to elevate rights or use application whitelisting to block unwanted apps and control what they can install.

Accepted Solution

Nirev earned 2000 total points
ID: 33515350
Honestly, there are tons of apps out there to block and to allow. Especially with users, someone will need something unlisted and installed sometime along the way. And figuring out if that application requires administrative rights to run and what not are time consuming and fustrating.

I would recommend that you evaluate the applications that you need to run in administrative mode and how often those are used before investing into such 3rd party admin rights apps, since most of these don't come cheap and the additional hassle to manage. Consider using a spare PC as a common system with virtual pc/os for the department to use should they need to test apps and etc.

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The Windows Firewall provides an important layer of protection and a rich interface to configure it. Unfortunately, it lacks item level filtering. This article details my process of implementing firewall-as-code to reduce GPO bloat.
A discussion about Penetration Testing and the Tools used to help achieve this important task.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

619 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question