My Baseline Application Policy policy has various categories blocked. Works well. Now I want some IT team members to have access to a few apps that are blocked by the Baselines Application Policy. So, do I either
a) clone the Baseline policy, unselect the apps I want to allow, assign policy to IT Team member and place above the Baseline policy
b) create an Allow policy including only the apps I want to allow,. assign policy to the IT Team members and place it above the Baseline policy
My worry about method (a) is that if I want to allow different apps for different people, it's going to get very messy with various cloned baseline policies with different lists of blocked applications. Method (b) would be simpler to manage but the Detection Option settings suggest I'll get alerted every time they access an Allowed application.
This thread was automatically locked due to age.
