Recommended settings
The application control policy specifies which applications are blocked and which are allowed on your computers. When setting up your application control policy, consider the following:
- Use the Detect but allow to run option to detect but not block controlled applications. Initially defining a report only policy enables you to gain a better view of application use across your network.
- Use the application control Event Viewer to audit application use within your company. You can access the Event Viewer by clicking .
- Use the Report Manager to create trend reports on application control events by computer or user.
- Consider using the "All added by Sophos in the future" option to block all new applications of a specific type that Sophos adds so that you do not have to constantly update your policy. For example, if you currently block all instant messaging applications, you may consider blocking all new instant messaging applications.