Configuring Application Control Rules

Procedure

1. Go to POLICIES → Application Control Rules.
2. Click Add Rule and select a rule type.
3. Specify a rule name.
4. Select a match method to identify applications and configure required settings.

   Match Method	Description
   File or folder paths	Allows you to apply the rule to any application installed in the specified location Click Add to specify file or folder paths. Examples: C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Adobe Supports wildcard characters within the path Examples: C:\Program Files\WindowsApps\Microsoft.WindowsStore*\WinStore.App.exe Note For a list of paths that you cannot use, see Unallowed Application Control Paths. For a list of supported environment variables, see Supported System Variables for Application Control Rules.
   Hash values	Allows you to apply the rule to applications based on SHA-256 hash values In Input method, select from the following: Manual: Click Add to manually specify hash values. Import: Use the Hash Generator tool to create a CSV file containing the hash values of the applications found on the endpoint. You can also create a CSV file using the CSV sample format. For more information on using the Hash Generator tool, see Using the Hash Generator Tool. Click Select File and follow the on-screen instructions to import your file.
   Application Reputation List	Allows you to apply the rule to applications that Trend Micro has tested Click Manage Applications to select the applications. Worry-Free Services adds the selected applications to the rule and downloads the files that are used to match the selected applications. For applications that receive updates frequently, Trend Micro also updates the Application Reputation List constantly to provide the latest information. Worry-Free Services needs to download the files again when the selected applications receive updates. Depending on the number of applications you selected, file downloads might consume your network bandwidth. For more information, see Network Bandwidth Consumption Resulted from Application Reputation List Updates.
   Gray Software List	Allows you to apply the rule to applications that Trend Micro has tested and found to be potentially harmful Click Manage Applications to select the applications. Worry-Free Services adds the selected applications to the rule and downloads the files that are used to match the selected applications. The Gray Software List contains applications that may be malicious if not used properly. Although not original intent of some of these applications, malware writers sometimes exploit the functionality of certain applications for malicious purposes. Trend Micro recommends testing and planning carefully before blocking applications in the Gray Software List.

5. Click Save.