The Application Startup Control component works in two modes:
This mode of Application Startup Control is enabled by default.
If the allow rules of Application Startup Control are fully configured, the component blocks the startup of all new applications that have not been verified by the LAN administrator, while allowing the operation of the operating system and of trusted applications that users rely on in their work.
Each mode has two actions that can be taken on running applications: Kaspersky Endpoint Security can block startup of the applications or notify the user about the startup of an application that matches the conditions of Application Startup Control rules.
Application Startup Control can be configured to operate in these modes both by using the Kaspersky Endpoint Security local interface and by using Kaspersky Security Center.
However, Kaspersky Security Center offers tools that are not available in the Kaspersky Endpoint Security local interface, such as the tools that are needed for the following tasks:
Application Startup Control rules created in the Kaspersky Security Center Administration Console are based on custom application categories, and not on inclusion and exclusion conditions as is the case in the Kaspersky Endpoint Security local interface.
This is why it is recommended to use Kaspersky Security Center to configure the operation of the Application Startup Control component.
Page top