Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
263
Views
0
Helpful
1
Replies

Cisco Security Agent

akundigraber
Level 1
Level 1

‎11-08-2004 07:19 AM - edited ‎03-02-2019 07:48 PM

Is it possible to check windows registry entries and deny or permit, for example, network access depending on the value? ( if any key in HKLM\SOFTWARE\CSCOpx\** have a value=1 than deny network access or so)

thanks

Armin

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎11-15-2004 05:26 PM

Sorry for the delay in responding, this message would have been better in the Security forum.

It's not possible to deny/permit based on existing registry values specifically. The Registry Access Control (RAC) rules deny/permit apps from writing new registry entries of a certain value, not to check existing entries.

You could create a RAC that allows the writing of registry entries equal to 1 under HKLM\SOFTWARE\CSCOpx\**, but set the Action on the rule to "Add process to Application Class". Then create a Network Access Control rule under the same policy that denies all network access to this App Class.

This will stop network access to any app that writes a registry entry equal to 1, which is not really what you want I don't think, but that's about the closest you can get.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card