Running system lockdown in test mode
|Article:HOWTO55131|||||Created: 2011-06-29|||||Updated: 2011-12-16|||||Article URL http://www.symantec.com/docs/HOWTO55131|
When you run system lockdown in test mode, you do not block unapproved applications. Instead, unapproved applications are logged in the Control log. After you determine that your system lockdown settings are correct, you can enable system lockdown. Typically, you run system lockdown in test mode for a week, or enough time for clients to run their normal applications.
To run system lockdown in test mode
In the Unapproved Applications dialog box, review the applications. This list includes information about the time that the application was run, the computer host name, the client user name, and the executable file name.
Names can be specified using a normal string or regular expression syntax. Names can include wildcard characters (* for any characters and ? for one character). The name can also include environment variables such as %ProgramFiles% to represent the location of your Program Files directory or %windir% for the Windows installation directory.
Article URL http://www.symantec.com/docs/HOWTO55131