Application Control Plus
Enforce allow/deny execution policies to stop unauthorised apps on endpoints.
Block unauthorised executables and enforce execution policies on managed endpoints
Stopping unauthorised executables is a common operational headache. Unknown binaries, ad-hoc installs and remote users make it hard to apply a consistent execution policy and to know what’s actually running on endpoints.
Application Control Plus lets teams enforce centrally managed allow/deny rules, keep an estate-wide application inventory and block or restrict unknown or risky executables. That brings clearer execution control at device level and provides logs and inventory data for operational checks and compliance evidence.
How organisations typically use Application Control Plus
Lock down user desktops in regulated environments by allowing only approved installers and blocking unknown binaries. Apply consistent execution rules across remote and branch endpoints while collecting inventory and execution logs to support investigations.
Use the product to reduce the attack surface from shadow IT, and to give central IT a single place to define which executables are permitted across managed devices.
Where this product best fits
Fits Windows-dominant, centrally managed estates where a small or mid-sized IT team needs straightforward execution control. Works well in regulated industries or organisations with distributed workforces that require enforced policies and app inventory without adding heavy operational overhead.
Features
Rule-based application whitelisting
Blacklisting of unauthorised software
Customisable policies
Trusted vendor management
Executable control
Real-time alerts and reporting
Audit-ready logs
Seamless integration with Endpoint Central
Useful Resources
Screenshots
