Endpoint: Application Control

Application control lets you detect and block applications that aren't a security threat, but that you decide are unsuitable for use in the office.

We recommend that you detect the applications being used on your network and then decide which to block.

To do this, do as follows:

1. In the Controlled Applications list, click Add/Edit List.

2. In Add/Edit Application List, do as follows:

   1. Select an application category, for example Browser plug-in. A full list of the applications in that category is displayed in the right-hand table.
   2. We recommend that you select Select all applications. You can refine your selection later.
   3. Click Save to List and repeat for each category you want to control.

3. In Detection Options, do as follows:

   1. Turn on Detect controlled applications when users access them (You will be notified).

   2. Select Block the detected application.

      If you chose to control any new applications added by Sophos, those new applications will now be blocked.

   The options you turn on in Detection Options apply to all the selected applications in your list.

   When Allow the detected application is turned on, it applies to all of your selected applications. If you want to allow an application or an application category while blocking or detecting others, edit your list and clear the checkbox next to it.

4. (Optional) Click Application Control Request to add and control an application that isn't in the list supplied by Sophos.

5. (Optional) In Desktop Messaging, enter a message you want to add. If you leave the message box empty, only the standard message is shown.

   Desktop Messaging is turned on by default. If you turn it off, you won't see any notification messages related to Application Control.

6. Click Save.

For more information about Application Control and the latest applications we add to the Controlled Application list, see Application Control.