FARONICS ANTI-EXECUTABLE ENTERPRISE, Manual

Page 1: ...Anti Executable Enterprise User Guide 1...

Page 2: ...ed Faronics Deep Freeze Faronics Core Console Faronics Anti Executable Faronics Device Filter Faronics Power Save Faronics Insight Faronics System Profiler and WINSelect are trademarks and or register...

Page 3: ...aronics Core Console 25 Accessing Anti Executable 27 Overview 28 Accessing Anti Executable via Faronics Core Console 29 Anti Executable Columns in Faronics Core Console 29 Executing Anti Executable Co...

Page 4: ...nistrator or Trusted User 50 Removing an Anti Executable Administrator or Trusted User 51 Enabling Anti Executable Passwords 52 Setup Tab 53 Setting Event Logging in Anti Executable 53 Anti Executable...

Page 5: ...nti Executable Enterprise User Guide 5 Preface Anti Executable protects computers by preventing unauthorized executables from running Topics Important Information Technical Support Definition of Terms...

Page 6: ...technology professionals Fueled by a market centric focus Faronics technology innovations benefit educational institutions health care facilities libraries government organizations and corporations P...

Page 7: ...one 800 943 6422 or 604 637 3333 Hours Monday to Friday 7 00am to 5 00pm Pacific Time Contact Information Web www faronics com Email sales faronics com Phone 800 943 6422 or 604 637 3333 Fax 800 943 6...

Page 8: ...nable or Disable Trusted Users cannot uninstall upgrade Anti Executable Authorized Executable An Executable that is in the Active White List and therefore can be launched Black Folder A folder and its...

Page 9: ...een from being displayed Trusted Executable A Trusted executable can launch other executables that themselves are unauthorized Unauthorized Executable An Unauthorized executable is one that is not in...

Page 10: ...Enterprise User Guide 10 Introduction Introduction Anti Executable protects machines by preventing unauthorized executables from running Topics Anti Executable Overview System Requirements Anti Execu...

Page 11: ...h the protection that you need Choose the Anti Executable edition that bests suits your needs Enterprise versions allow to protect multiple computers from a central console called Faronics Core Consol...

Page 12: ...system requirements can be found in the Faronics Core Console user s guide Workstation Requirements Anti Executable can be installed on the following operating systems 32 bit edition of Windows XP SP3...

Page 13: ...ed to a Full Version A Full version requires a valid License Key in order to protect the machine License information can be entered multiple ways depending on the configuration From the Console On an...

Page 14: ...Anti Executable Enterprise User Guide 14 Introduction...

Page 15: ...15 Anti Executable Enterprise User Guide Installing Anti Executable This chapter describes the installation process of Anti Executable Topics Installation Overview Installing Anti Executable Loadin...

Page 16: ...nister all Anti Executable tasks and commands Anti Executable features installers for 32 and 64 bit versions of Windows Server 2003 Windows Server 2008 Windows XP SP3 and Windows Vista If you are inst...

Page 17: ...1 Insert the CD ROM from the Media Package into the CD ROM drive If Anti Executable has been downloaded via the Internet double click the Anti Executable_Console_Loadin_Installer exe file to begin th...

Page 18: ...m Files Faronics Faronics Core Loadins Anti Executable Click Next to continue 4 Click Install to begin the installation 5 Click Finish to complete the installation If Faronics Core Console was running...

Page 19: ...nsole displays a list of Anti Executable specific features in the Actions pane when one or more workstations have been selected There are also specific columns displayed in the workstation list as ill...

Page 20: ...e Console properties workstations and groups scheduled tasks and generated reports Workstations List The list of all workstations that have reported to Faronics Core Console This list also displays co...

Page 21: ...n is installed to one or more workstations To install Anti Executable manually on a workstation after copying the file complete the following steps 1 Double click the msi file to begin the installatio...

Page 22: ...stall location The default is C Program Files Faronics AE Click Next to continue 5 This step is optional Specify the Anti Executable Administrator and Trusted User passwords These passwords can also b...

Page 23: ...Guide 6 The Automatic Scanning and White List Creation dialog is displayed Select Enable if you want Anti Executable to automatically scan all non removable drives on the computer and create a White L...

Page 24: ...tart is recommended following installation If the Enable check box is selected in the Automatic Scanning and White List Creation dialog Protection is enabled and there is an Active White List when the...

Page 25: ...ion Advanced Install Upgrade Anti Executable 2 Specify the Workstation Credentials There are two options Select Local Workstation Account to use the local workstation account to install upgrade Anti E...

Page 26: ...heck box is selected in the Automatic Scanning and White List Creation dialog Protection is enabled and there is an Active White List when the computer restarts If the Enable check box is not selected...

Page 27: ...27 Anti Executable Enterprise User Guide Accessing Anti Executable Topics Overview Accessing Anti Executable via Faronics Core Console Accessing Anti Executable Enterprise on a Workstation...

Page 28: ...om Faronics Core Console to the workstation occurs under the context of that account This account becomes the first Anti Executable Administrator following installation from Faronics Core Console Addi...

Page 29: ...pecifies one of the following values Enable When set to Enable it indicates that Anti Executable is protecting a workstation with an Active White List Disable When set to Disable any executable can be...

Page 30: ...e Configure Anti Executable to run in Stealth Mode on one or more selected workstations Keyboard and Mouse Disable or enable keyboard and mouse devices on an individual workstation or multiple worksta...

Page 31: ...he sub menus which appear contain the following list of available actions Actions controlled by Faronics Core Console Shutdown Restart Wake up Actions controlled by Faronics Anti Executable Protection...

Page 32: ...em Tray The Ctrl Alt Shift F10 hotkey sequence can be used as well If you are an Administrator you will have access to the Status White List Black List User and Setup tabs If you are a Trusted User yo...

Page 33: ...is chapter describes the procedure to configure and use Anti Executable Topics Overview Status Tab White List Tab Adding Blocked Executables to the Active White List Black List Tab Users Tab Setup Tab...

Page 34: ...ti Executable Protection to Enable Disable or Maintenance Mode White Lists Used to create edit and apply White Lists Black Lists Used to create edit and apply Black Lists Users Used to add Administrat...

Page 35: ...e installed If newer versions are available New version is available is displayed Click Update for more information If an Evaluation version of Anti Executable has been installed the Valid until field...

Page 36: ...ist has been set as Active it is also included in the configuration export To save an Anti Executable configuration file click Export in the Status tab after making selections The configuration file i...

Page 37: ...The Status pane retrieves and displays all the settings of a single workstation When a single workstation is selected and Anti Executable is launched via Faronics Core Console the workstation settings...

Page 38: ...te List Executables installed on a remote workstation cannot be added to the Active White List unless the remote workstation is visible through the file browser in the Anti Executable Scan dialog Whit...

Page 39: ...Executable White List Editor The White List Editor is opened by clicking on the White List tab and selecting New Open or Edit The White List Editor also appears when an individual White List file is...

Page 40: ...has been retrieved To launch Anti Executable on the workstation Shift double click the Anti Executable icon in the System Tray You can also use the Ctrl Alt Shift F10 hotkey Specify the Administrator...

Page 41: ...ion s size and number of executables found within 5 Once the scan has finished Anti Executable checks if you want to proceed Click OK 6 A populated White List appears Folders and executables can be ad...

Page 42: ...dditional information to be entered A description can also be added for the entire list in the space provided at the top of the White List editor 9 Click Save to save the White List Click Save As to s...

Page 43: ...has finished the results can be merged into the White List Individual folders and executables can be added by clicking Add To open a previously created White List click Open and browse to the White L...

Page 44: ...to the Active White List The next time the executable is launched it will be blocked again Deny The executable is not added to the Active White List and remains an unauthorized executable It is not p...

Page 45: ...xecutables installed on a remote workstation can not be added unless the remote workstation is visible through the file browser in the Anti Executable Scan feature Black Lists can be applied and deplo...

Page 46: ...nti Executable Black List Editor The Black List Editor is opened by clicking on the Black List tab and selecting New Open or Edit The Black List Editor also appears when an individual Black List file...

Page 47: ...h Anti Executable on the workstation Shift double click the Anti Executable icon in the System Tray Alternatively you can use the Ctrl Alt Shift F10 hotkey Specify the Administrator password to logon...

Page 48: ...cutables within that folder and its sub folders are permitted to launch To remove a folder or executable select it and click Remove This does not remove the folder or executable from the system To mer...

Page 49: ...List Editor In addition to populating a new Black List the Scan feature allows executables from a specific location to be added to an existing Black List This location can be local external or on a ne...

Page 50: ...then add existing Windows users to Anti Executable Any user not listed by Anti Executable is an external user who is subject to the executable launch limitations specified by the contents of the Activ...

Page 51: ...ser name to add it to Anti Executable s list and click OK 4 By default each added user is an Anti Executable Trusted User If the new user is to be given administrative rights specify them as an Anti E...

Page 52: ...ded layer of protection Anti Executable can attach a password to each user group Passwords only apply to the members of the associated groups To specify a password ensure the Enable check box is selec...

Page 53: ...nti Executable s presence on a system Stealth Mode gives the option to the Administrator to hide the Anti Executable icon in the Windows system tray prevent the Alert from being displayed and prevent...

Page 54: ...Executable Administrators can use the Alerts pane to specify the message and an image that appears whenever a user attempts to run an unauthorized executable The following messages can be set White L...

Page 55: ...Enterprise User Guide Creating an Anti Executable Report through Faronics Core Console To view the log for one or more selected workstations right click the workstation s and select Generate Report An...

Page 56: ...Anti Executable Enterprise User Guide 56 Using Anti Executable...

Page 57: ...57 Anti Executable Enterprise User Guide Command Line Control This chapter explains the various Command Line Controls available for Anti Executable Topics Command Line Control...

Page 58: ...or folder name and path PW password Add a folder or file to Active Black List path AEC AddToActiveBlackList file or folder name and path PW password Add a folder or file to Active White List path AEC...

Page 59: ...les Maintenance Mode Using the switch duration n enables Maintenance Mode for n minutes The lock switch disables the keyboard and mouse The switch lock must be used with the switch duration n Export B...

Page 60: ...ath AEC generateWhiteList New White List path and name aewl Directory from which to start apply PW password Generate White List and exclude Sub Folders path AEC generateWhiteList New White List path a...

Page 61: ...List In both cases the password for the administrator is specified as password Import Configuration path AEC importConfiguration Config file path and name aecfg PW password List Commands path AEC help...

Page 62: ...Product MSI Silent install Scan fixed drives msiexec q i path Product MSI ISSCANENABLED 1 Silent install set passwords msiexec q i path Product MSI AEADMINPSW password TRUSTEDUSRPSW password Silent in...

Page 63: ...63 Anti Executable Enterprise User Guide Uninstalling Anti Executable Topics Uninstalling Using Faronics Core Console Uninstalling on a Workstation using the Uninstall Wizard...

Page 64: ...ing steps 1 Open Faronics Core Console 2 Click on the Workstations icon in the left pane of Faronics Core Console 3 Right click on the workstation s in the Workstation List from which Anti Executable...

Page 65: ...e Uninstall Wizard Anti Executable can be removed by double clicking on the msi file used to install Anti Executable The Setup Wizard appears 1 Click Next to begin the uninstall 2 Click Remove followe...

Page 66: ...g Anti Executable 4 Click Finish to complete the uninstall 5 Following a successful uninstall a workstation restart is required Click Yes to restart immediately or No to restart later An immediate wor...

Page 67: ...din can be uninstalled through Add Remove programs To do so click on Start Control Panel Add Remove Programs Anti Executable Loadin Remove Uninstalling the Anti Executable Loadin will remove all Anti...

Page 68: ...Anti Executable Enterprise User Guide 68 Uninstalling Anti Executable...