By default, SecureAPlus is set to trust files as a trusted installer based on their digital signature and allow application with valid digital signature to be trusted as an installer if its certificate name is found in the Trusted Certificate list. Hence, some applications can be promoted into a Trusted Installer without prompting the user. By adding the application in the Restricted Applications list, it will not automatically bring in other applications that may potentially harm the user’s system.
For example: Google Chrome can download, extract or copy files from external sources and some of the files may be harmful to the system. If you are downloading a new installer using Google Chrome, Google Chrome can be automatically set to trusted installer without any permission from the user as Google Chrome is signed and trusted. Hence, everything that Google Chrome has created will automatically be trusted. To avoid that, you have to set chrome.exe as a restricted application in the Restricted Applications List.
To set applications as restricted applications,
- Launch SecureAPlus > App Settings
- In the App Settings menu, click on Application Whitelisting > Advanced Settings
- In the Restricted Applications tab, you can choose to set the application as a restricted application (trusted application with restrictions) in which any new files created by it will not be automatically trusted.
Restricted Application cannot be set to Trusted Installer without removing it from the restricted application list. If you try to set to Trusted Installer, you will receive a prompt as shown below:
Follow these instructions below to add, edit and remove your restricted applications:
Add Restricted Application
- Click the Add button.
- In Restricted Applications window, click on Browse to select the restricted application executable or enter the file name without path, or full path file name. Then click Add, otherwise, click Cancel to exit the Add Restricted Application window.
- The newly added restricted application will be added to the list.
Edit Restricted Application
- Select a restricted application from the list and double-click on it till you see a text box. Make necessary changes and hit the Enter key.
Remove Restricted Application
- Checked on the restricted application from the list that you want to remove, click the Remove button.
Refresh Restricted Application
- Click the Refresh button.
- The Restricted Applications list will be refreshed and updated.
This post is also available in: Japanese