Open Endpoint Manager > Click ‘Security Sub-Systems’ > ‘Application Control’
What’s the difference between ‘Comodo’ and ‘Admin’ ratings?
Use the application control interface
A file’s trust rating determines how Comodo Client Security handles the file on the endpoint.
There are three possible ratings:
What’s the difference between ‘Comodo’ and ‘Admin’ ratings?
Although only two are covered in this interface, there are actually three possible sources for a file trust rating:
Comodo rating - This is the official Comodo trust rating for the file. CCS gets this rating from our file-lookup server (FLS) when it runs a virus scan on the file.
Admin rating - Admins can use Endpoint Manager to apply their own rating to a file. You can do this by clicking ‘Change Rating’ in the ‘Application Control’ screen. You can also specify a file’s admin rating in device details > file list. Local verdict server must be enabled in the profile for admin ratings to have any effect.
Local rating - End-users (or local admins) can set a file’s rating in the CCS interface. This can be done in CCS in the file list, in the vendor list, or at a virus alert.
Ratings are prioritized as follows:
1) Admin rating
2) Local rating
3) Comodo rating
Use the Application Control interface
The interface lists all files discovered on managed endpoints along with their trust rating.
The following information is shown for each file:
Click the number in the ‘# of Devices’ column to view devices which feature the file:
The controls above the list let you take various actions on selected files:
File Details - View basic file details and the devices on which the file is present. You can also change the trust rating of the file in this area.
Change rating – As covered earlier, a file’s trust rating determines how CCS handles the file on the endpoint.
You can choose from the following ratings:
Your new rating is automatically applied to all devices on which it is present.
Record – The record button lets you hide, unhide or delete files in the application control list.
Export - Export the current file list to a .csv file.
Further reading
How to view security events on Windows endpoints
How to manage programs running in containment on your endpoints
How to run virus scans on devices from the security sub-systems menu
How to view connection attempts from external devices to your endpoints