Environment
- Carbon Black Cloud Sensor: All supported Versions
- Carbon Black Cloud Console: All versions
- Microsoft Windows: All Supported Versions
- Apple MacOS: All Supported Versions
Question
Can you ban applications on a per sensor basis?
Answer
You can add the application or path to an existing policy by creating a blocking rule for Runs or is running to Terminate Process. See the example below:
Application(s) at path:
powershell.exe
Operation attempt:
Runs or is running
Action:
Terminate process
Additional Notes
Related Content