Hi,
I am implementing system lockdown in my environment which consist of 14 workstations. All the workstations has the same images.
I run a fingerprint scan on one of the workstation using checksum.exe and add in to my SEP manager, i turn on system lockdown in test mode using the list of fingerprints i have scanned from that particular workstation.
I click on the view unapproved application button, and discovered that there is a lot of unapproved applications. I tried to run another fingerscan on another workstation which has the list of unapproved applications and compare it with the existing list.
it appears that they have the same fingerprint but seems like SEP is not able to recognise it. I have also tried adding in the files that are being block to the list manually by stating the path, but i'm still getting the same result.
Please advice how can i get my system lockdown to work properly.
Thanks