Deployment and Imaging Group

 View Only

  • 1.  [SDCS] How can i like system lock down?

    Posted Aug 11, 2014 11:15 AM

    I need trust process can run and call sub-process.

    The other process can be deny.

    I set the policy content below...

    180px_SDCS-01.png  180px_SDCS-02.png

    I can deny non-trust process, but can't allow trust process call sub-process.

    Such as

    cmd.exe is trusted updaters process.

    cmd.exe call putty.exe can't be run.

    log is deny_ps.

    How can i do?

    Thanks



  • 2.  RE: [SDCS] How can i like system lock down?

    Posted Aug 12, 2014 06:09 AM

    deny_ps means its being explicitly denied.  You need to find where it's being denied and remove it.  Go to the policy summary and search for cmd.exe and putty.exe

    Then create a new sandbox called somthing like "allowed applications" and allow cmd to call putty.exe within Process Access control