About the structure of an Application and Device Control policy
|Article:HOWTO81236|||||Created: 2012-10-24|||||Updated: 2014-09-21|||||Article URL http://www.symantec.com/docs/HOWTO81236|
The application control portion of an Application and Device Control policy can contain multiple rule sets, and each rule set contains one or more rules. You can configure properties for a rule set, and properties, conditions, and actions for each rule.
Rules control attempts to access computer entities, such as files or Windows registry keys, that Symantec Endpoint Protection monitors. You configure these different types of attempts as conditions. For each condition, you can configure actions to take when the condition is met. You configure rules to apply to only certain applications, and you can optionally configure them to exclude other applications from having the action applied.
Device control consists of a list of blocked devices and a list of devices that are excluded from blocking. You can add to these two lists and manage their contents.
Figure: Application and Device Control policy structure illustrates the application and device control components and how they relate to each other.
Article URL http://www.symantec.com/docs/HOWTO81236