https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353324#M96708 <HTML><HEAD></HEAD><BODY><P>Peter,</P><P></P><P> Thanks for your suggestions. I've been away for a few days, I'll try them out and let you know.</P><P></P><P>rgds</P><P>cbigas</P></BODY></HTML> Fri, 08 Apr 2005 02:22:16 GMT cbigas 2005-04-08T02:22:16Z https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353322#M96706 <P>How would you recommend a rule setup to lock down your SOE. For example I have an application class that has all our approved software listed, how could you then block/restrict anything that is not on this list???</P> Sun, 10 Mar 2019 09:21:06 GMT https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353322#M96706 cbigas 2019-03-10T09:21:06Z https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353323#M96707 <HTML><HEAD></HEAD><BODY><P>Hey there -</P><P></P><P>Seems like permitting your SOE then denying *.exe, *.com, etc would be the easiest route. It would take a clean PC to ensure your App Class had just the processes you wanted to run.</P><P></P><P>Another alternative is that you could restrict the ability for the user's to install any program, while only permitting them to install from internal websites or from a pre-defined public share.</P><P></P><P>So for your question, if you had an App Class with all your permits, add a Deny to deny all executables you don't want to launch. This could be any executable from the all hard drives, or maybe just executables in c:\program files\**</P><P></P><P>Let us know what you think and we can continue discussing this.</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Mon, 28 Mar 2005 04:25:53 GMT https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353323#M96707 pcomeaux 2005-03-28T04:25:53Z https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353324#M96708 <HTML><HEAD></HEAD><BODY><P>Peter,</P><P></P><P> Thanks for your suggestions. I've been away for a few days, I'll try them out and let you know.</P><P></P><P>rgds</P><P>cbigas</P></BODY></HTML> Fri, 08 Apr 2005 02:22:16 GMT https://community.cisco.com/t5/network-security/csa-configuration-suggestion/m-p/353324#M96708 cbigas 2005-04-08T02:22:16Z