How to configure Ivanti Endpoint Security to prevent software installation only without other filtering options

Version 4

    Verified Product Versions

    LANDESK Management Suite 9.6LANDESK Management Suite 2016.xLANDESK Endpoint Manager 2017.x

    Scenario

    How to configure Ivanti Endpoint Security for preventing software installation only without other filtering options? But also to have the option to allow end users to overcome this block.

     

    Solution

     

    To achieve this goal you would have to have the application control/Hips control option enabled under the application control part of EPS.:

     

    Once enabled add a rule under 'File protection rules', see below:

    To not allow the creation of folders etc under the %programfiles% or %programfiles(x86) folders. In a sense creating a rule that will block normal installations from installing.

     

    Then the end users can then override this with the password idea you had above within the UI here: