ZENworks® ESM 3.5 Administrator’s Manual 203
Block Gray List Script
This script will block ALL non-approved software from executing. This script is a Global Rule,
and is not applied per location. When activated, this Script will disable (prevent from executing)
ALL applications with the exception of the ones included in the Gray List Application Controls
list.
To initiate the Block Gray List Script, perform the following steps:
Step 1: In EACH location in this policy, create a NEW firewall setting and set it as the default
Step 2: Remove the previous default firewall settings (All Adaptive), as well as any other Novell
firewall settings that cannot be altered (set as read-only)
Step 3: Under the new firewall settings associate the existing Application Control setting: Gray
List Minimally Functional, and leave the Default Execution Behavior set to All Allowed
WARNING:
Every firewall setting contained in this policy MUST contain the Gray List Minimally Functional Application
Control.
Step 4: Open the setting and add any additional, required applications to the list
Note:
Once this script executes, ONLY the applications on this list will run on the endpoint.
Step 5: Associate the Block Gray List scripting rule to this policy
