This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Application control - how to identify specific client with Controlled Application?

We've enabled Application Control in "Detect but allow to run" mode for pretty much everything to get a feel for what is out there - this has created a lot of events. Reporting "Alerts and events by item name" shows some applications that we want to investigate, but how can we drill down to see which client has raised a particular application event?

I had hoped I could create an SQL query but the database doesn't seem to have any Application Control tables...

:10965


This thread was automatically locked due to age.