Home Print Show Topic URL Previous Next
IT Management Suite
Client Management Suite
Server Management Suite
Deployment Solution
Asset Management Suite

Denying applications using custom application metering policies

Inventory Solution

Application denial is only available on Windows computers.

To deny applications from running, you can create and configure policies that run denying functions on managed computers. You can define one or more applications in one policy.

To deny several applications, you can also add them to the Blacklisted Applications policy. This policy is a predefined policy that denies applications from running.

See Denying applications using the predefined Blacklisted Applications policy

To use application metering, you must have Application Metering Plug-in installed on target computers.

This task is a step in the process for denying applications.

See Denying applications

To deny applications using custom application metering policies

  1. In the Symantec Management Console, on the Manage menu, click Policies.

  2. In the left pane, expand Software > Application metering.

  3. Right-click the Application metering folder and click New > Application metering policy.

  4. On the policy page, give the policy a unique name and description.

  5. On the Software tab, select or define the applications you want to meter.

    See Defining applications to meter or deny

    You can also edit application definitions or delete applications from the list.

  6. On the Options tab, configure the policy options as follows:

    • To configure if and when the applications in this policy can run, click Only deny running, or Deny from running.

      For example, to deny an application from running during business hours, click Only deny running, in the drop-down list, click During business hours and weekends, and then configure business hours and days according to your needs.

    • To track the usage events of the applications that are defined in the policy, check Record usage events, and then, in the drop-down lists on the right, specify the event types that you want to record and the intervals when the records of events are sent to the Configuration Management Database (CMDB).

      For example, to record the deny events and send the records to the CMDB every day, check Record usage events, and then, in the drop-down lists on the right, click Deny and Daily.

      See About application metering start, stop, and denial events

    • To define the actions to be taken when a denied application attempts to run, under If run attempted during deny hours, in the drop-down list below, click No action or Send an email.

      For example, to send an email that reports the denied application event, in the drop-down list, click Send an email, in the Mail Settings dialog box, type the recipient's email address in the E-mail ID field, type a subject and text for the email, and then click OK.

    • To prompt a user with a message when the user attempts to start a denied application, check Inform user, and type the text of the message.

  7. Click Apply to, and select the resources to which you want to apply the policy.

    See Specifying the targets of a policy or task

    See Specifying filtering rules for resource targets

  8. Turn on the policy.

    At the upper right of the page, click the colored circle, and then click On.

  9. Click Save changes.