This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Diego_Carreno
Participant
‎2019-04-05 08:29 AM

Downloadable application lock by SmartEndpoint policies.

Hi all,

Currently I have the following scenario:

I need to block a downloadable application through policies of Smartendpoint and its client.

It is possible to customize such blocking, that is, a "test.exe" program can not be downloaded by a user.

Thank you very much for your attention!

0 Kudos
Reply
3 Replies
PhoneBoy
Admin
Admin
‎2019-04-06 02:44 PM

On SmartEndpoint you should be able to prevent the application from running by using Application Control.
To prevent downloading, it's possible URL Filtering might be able to do it, but not sure.
A gateway running Anti-virus blade could do it (possibly requiring HTTPS Inspection).
Reply
Arkavia_Network
Explorer
‎2019-04-08 08:35 AM
In response to PhoneBoy

Thanks for your answer.

Finally I spoke with TAC and they told me that it was not possible to carry out that configuration through SmarEndpoint policies.

Reply
Maksym_Sofer
Employee
Employee
‎2019-04-21 05:29 AM
In response to Arkavia_Network

SandBlast extension could block specific file type to be downloaded at all.

 

It could be either Standalone extension which is managed from gateway or extension installed as part of Threat Extraction and Emulation (TE) blade.

TE blade it is controlled in the following way:

SmartEndpoint -> Policy Tab -> "Threat Extraction and Emulation"  section -> Protect web download with Threat Emulation.
Right-click and select "Edit shared action", now click on "Override default file action per file type".

Ther you can set for EXE - Block Download.

Reply