Whitelisting applications (EN)


Through whitelisting, a user remote controlling the Host will only be able to see and control the whitelisted applications. Both keyboard and mouse will not be transmitted to other applications except to the whitelisted ones and any non-whitelisted application will be masked out from the remote view.
Whitelisted applications can be managed:

More information is available below.

Through whitelisting, a Guest user remote controlling the Host will only be able to see and control the whitelisted applications. Both keyboard and mouse will not be transmitted to other applications except the whitelisted ones and any non-whitelisted application will be masked out from the remote view.

Configuring application whitelisting

Host configuration

Prerequisites:

Recommended but not required:

Steps

The steps below are to be executed on the Netop Host.

  1. Go to your Netop configuration files folder. Here is the default path to the Host's configuration files by Windows operating system:

    Windows 7 32-bit, Server 2008 32-bit, Vista 32-bit
    C:\ProgramData\Netop\Netop Remote Control\Host

    Windows 7 64-bit, Server 2008 64-bit, Vista 64-bit
    C:\ProgramData\Danware Data\C\Program Files (x86)\Netop\Netop Remote Control\Host
  2. Create and edit a file called whitelisted.txt
  3. Add the applications which should be accessible by the Remote Control users, one per line. See below more details on how to edit the whitelisted.txt  file.
  4. in the Host, access Tools - Guest Access Security , and choose one of the above Guest Access Methods
  5. Either change an existing security role, or create a new one
  6. On the right side of the security role definition, choose Yes for the Whitelisted applications option
  7. Add users or groups to the above security role. Those users will only be able to access the whitelisted applications.
    Note that you can still have other security roles which provide full access to the Host.

Things to consider

Defining the whitelisted applications

Whitelisted applications are defined in the whitelisted.txt file, one application per line, in any of the following ways:

Customizing the whitelisted.txt location

If you would like to have the whitelisted.txt file in a different location than the Netop configuration files folder, you can customize it in the netop.ini configuration file. 

To do that, edit the netop.ini file located in C:\Windows. Open this file using Notepad and look for the heading [HOST]. Under that heading add WHITELISTING_FILE=[file path], where [file path] represents the new location for the whitelisted.txt file. In the end, netop.ini should contain something like:

[HOST]
WHITELISTING_FILE=[file path]

Security Server configuration

Prerequisites:

 Recommended but not required:

Steps

The steps below are to be executed on the Netop Security Server.

  1. Open the Security Manager and go to Netop Security Management > Security Settings
  2. Add one or multiple applications that you would like to whitelist

  3. When creating the Role, add the applications you would like to whitelist in the Whitelisted applications tab

  4. Next time the Guest connects to the Host and the above Role applies, only the whitelisted applications will be visible 

Netop Portal configuration

Prerequisites:

 Recommended but not required:

Steps

The steps below are to be executed on the Netop Portal.

  1. Login into the Portal and go to Settings > Manage > Applications (you must be logged in as an Account Administrator or higher)
  2. Add one or multiple applications that you would like to whitelist

  3. When creating the role assignment, add the applications you would like to whitelist

  4. Next time the Guest connects to the Host and the above role assignment applies, only the whitelisted applications will be visible


Article Number: 485
Posted: Thu, Jun 14, 2018 11:53 AM
Last Updated: Mon, Oct 8, 2018 1:43 PM

Online URL: https://kb.netop.com/article/whitelisting-applications-en-485.html