Great, thank you for the help, forgive me put I have a few more questions pertaining to other features in SEP. Turns out I was missing alot of great information on this forum over the years. Could you assist or should I setup another thread? Questions are as follows
I setup System Lockdown on a test group and just have my workstations on it, I have it setup to log unapporved applications. I pulled a fingerprint from my workstation via the SEPM. Since I did that I have installed a new application, how do I get those hashes into the approved applications, run another fingerprint scan? Also I would like to enable system lockdown one day, is everytime there is a software updates, such as windows update or adobe flash and reader update are my workstations going to not work and need a new fingerprint pulled?
Also how do you recomend monitoring and alerting on the data in sep, there doesn't seem to be a way to get an email notification in the event of virus infections etc, just scheduled reports, I appreciate any help you can offer.