Presentation is loading. Please wait.

Presentation is loading. Please wait.

Application Whitelisting and Your Managed Desktops

Published byPatrick Barrette Modified over 6 years ago

Similar presentations

Presentation on theme: "Application Whitelisting and Your Managed Desktops"— Presentation transcript:

1 Application Whitelisting and Your Managed Desktops
Aakash Shah / Jeremy Paje August 15, 2018

2 Application Whitelisting and Your Managed Desktops
About Us Jeremy Paje Manager, Desktop Support Services Office of Information Technology Aakash Shah Systems Engineer, Windows Services Group

3 Overview What is Application Whitelisting? Reasons for implementing
Application Whitelisting and Your Managed Desktops Overview What is Application Whitelisting?  Reasons for implementing Setting up AppLocker policies Troubleshooting AppLocker Challenges Questions

4 Application Whitelisting and Your Managed Desktops
Question for you

5 Common security layers
Application Whitelisting and Your Managed Desktops Common security layers Antivirus Firewall (software) Firewall (hardware) Patching IPS *Application whitelisting

6 What is Application Whitelisting?
Application Whitelisting and Your Managed Desktops What is Application Whitelisting? Ways to control application execution Trust Centric – Default Deny, allow only files on whitelist to run.  (recommended) Threat Centric – Default Allow, block files on blacklist from running.  

7 Application Whitelisting and Your Managed Desktops
Why should we care?

8 Problems Before Application Whitelisting
Application Whitelisting and Your Managed Desktops Problems Before Application Whitelisting (Even on patched machines…even without admin rights)

9 Application Whitelisting
Microsoft AppLocker Windows 10 Enterprise/Education, Windows 7 Enterprise Group Policy

10 First things first… Test, test, test...

11 Where Are The AppLocker Policies?
Application Whitelisting and Your Managed Desktops Where Are The AppLocker Policies?

12 Configure Rule Enforcement
Application Whitelisting and Your Managed Desktops Configure Rule Enforcement

13 Application Whitelisting and Your Managed Desktops
Enable DLL Rules

14 Application Whitelisting and Your Managed Desktops

15 Application Whitelisting and Your Managed Desktops
Create Default Rules

16 Application Whitelisting and Your Managed Desktops
Default Rules View

17 Enable Application Identity Service

18 Application Whitelisting and Your Managed Desktops
Adding Custom Rules

19 Application Whitelisting and Your Managed Desktops

20 Application Whitelisting and Your Managed Desktops

21

22

23 Logs

24 Recommendations/Tips
Store apps - NT AUTHORITY\SYSTEM Writable folders under C:\Windows AppLocker variables DLLs

25 Challenges Types of problems we see:
Application Whitelisting and Your Managed Desktops Challenges Types of problems we see: “I need to log into this webinar now!” Errors while installing applications “Issued To” certificate attribute changes AppLocker rule limitations Constrained Language Mode in PowerShell

26 Application Whitelisting and Your Managed Desktops
Questions? Jeremy Paje Manager, Desktop Support Services Office of Information Technology Aakash Shah Systems Engineer, Windows Services Group Click Here To Audio Of This Presentation

Download ppt "Application Whitelisting and Your Managed Desktops"

Similar presentations

Auditing Microsoft Active Directory

Auditing Microsoft Active Directory
Module 5: Creating and Configuring Group Policy

Module 5: Creating and Configuring Group Policy
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Sony White House Anthem Lockheed Aramco Bushehr nuclear reactor NSA Hacked Facebook Hacked Apple,Google,Microsoft,

Sony White House Anthem Lockheed Aramco Bushehr nuclear reactor NSA Hacked Facebook Hacked Apple,Google,Microsoft,
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
Lesson 18: Configuring Application Restriction Policies

Lesson 18: Configuring Application Restriction Policies
Module 16: Software Maintenance Using Windows Server Update Services.

Module 16: Software Maintenance Using Windows Server Update Services.
Microsoft ® Official Course Module 9 Configuring Applications.

Microsoft ® Official Course Module 9 Configuring Applications.
9.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
GROUP POLICY An overview of Microsoft Windows Group Policy.

GROUP POLICY An overview of Microsoft Windows Group Policy.
Securing Windows Servers Using Group Policy Objects

Securing Windows Servers Using Group Policy Objects
Corso referenti S.I.R.A. – Modulo 2 07 – Group Policy 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.

Corso referenti S.I.R.A. – Modulo 2 07 – Group Policy 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.
© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 6 Today’s Windows Windows Vista and Windows 7 McGraw-Hill.

© 2012 The McGraw-Hill Companies, Inc. All rights reserved. 1 Third Edition Chapter 6 Today’s Windows Windows Vista and Windows 7 McGraw-Hill.
Tutorial 11 Installing, Updating, and Configuring Software

Tutorial 11 Installing, Updating, and Configuring Software
Hands-On Microsoft Windows Server 20081 Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.

Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
Week #7 Objectives: Secure Windows 7 Desktop

Week #7 Objectives: Secure Windows 7 Desktop
Troubleshooting Windows Vista Security Chapter 4.

Troubleshooting Windows Vista Security Chapter 4.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

Similar presentations

Ads by Google