Overview
CyberQP allows technicians to easily create a new auto-approval rule directly from an incoming elevation request. This is a quick and efficient way to build out rules based on real-world elevation requests submitted by end-users.
Note: Currently, only Super Admin and Primary Admin roles have the ability to manage policies and rules. Support for additional roles is coming soon.
Steps to Create a Rule from an Elevation Request
1. Open an existing Elevation Request
Navigate to the Elevation Requests page on the Dashboard and open an existing request
2. Click Create Rule
You will see a Create Rule option when the request has sufficient program details.
3. Define the Rule Details
Rule Name:
Enter a descriptive name for the rule.Conditions:
You can choose one or more conditions based on the process details captured from the request: Publisher, Program Path, File Name, File Hash (SHA256), Minimum Version, Certificate Hash
NOTE: The request will be auto-approved only if ALL conditions in the rule match.
You can use wildcards (*) within Publisher and File Name conditions to match patterns in application names.
For example:
File Name = Chrome*.exewill match all files that start with "Chrome" and end with.exe.
⚠️ Note: Always use wildcard conditions in combination with other conditions to avoid overly broad rules.
4. Select Policy to Add the Rule To
After defining the rule, select the policy where you'd like to add this rule.
You can choose any existing policy
5. Save and Apply
If the policy is Active:
The rule will immediately start working and will Auto-approve any future incoming requests that match the rule
If the policy is in Draft:
The rule will be added but will not take effect until the policy is set to Active.
Comments
0 comments
Please sign in to leave a comment.