Thread Info
  • State Not Answered
  • Replies 7 replies
  • Subscribers 15 subscribers
  • Views 517 views
  • Users 0 members are here
Options
Suggested

Application Control Policy Not Working

ptho

Hi Sophos,

I can't get the Application Control policy to block Proxy / VPN Tools.

I've tried to edit the Base Policy as well as create a new policy and neither seem to work. See the attached image. I have tried selecting all VPN / Proxt Tool objects, as well as a singular one for testing, and the apps seem to open and connect no matter what.

This is the Base Policy as shown, so should affect all devices.

What am I doing wrong? Is there any particular action I need to take to force a Application Control policy sync on the device?

Thanks

Parents
  • 0

    In addition to what Glenn mentioned regarding policy compliance, I'd like to inquire if you are trying to block ALL Proxy/VPN tools or only "Windscribe" as selected. 

    The current configuration will only block the apps you've selected. Choosing the "Allow" option will instead only allow the selected apps and block all others. 

    If Windescribe continues to run unblocked, I'd suggest sending in an application control request with the version of the app you are currently running, as this may mean our catalogue needs to be updated. 
    See: support.sophos.com/.../filesubmission

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
  • 0 in reply to Qoosh

    Hi Qoosh,

    I've tried both - blocking just Windscribe, and running that app alone for it to still work, and checking every item in that 'Proxy / VPN Tool' menu. In either case with the settings as above, neither appears to have any affect on the Windows 11 client.

    I'll create a new policy to Allow only the intended app we use, and see if Windscribe is now blocked. Interestingly I've tried and seen the same with OpenVPN Connect, so if it still doesn't work then there could be a number of items inthe application catalogue that need updating.

Reply
  • 0 in reply to Qoosh

    Hi Qoosh,

    I've tried both - blocking just Windscribe, and running that app alone for it to still work, and checking every item in that 'Proxy / VPN Tool' menu. In either case with the settings as above, neither appears to have any affect on the Windows 11 client.

    I'll create a new policy to Allow only the intended app we use, and see if Windscribe is now blocked. Interestingly I've tried and seen the same with OpenVPN Connect, so if it still doesn't work then there could be a number of items inthe application catalogue that need updating.

Children
Unfiltered HTML