Snipping Tool Template
This template creates a configuration that denies access to the session if Snipping Tool is running on the remote device. It can be found in the PROCESS MONITORING category when filtered for REMOTE platform.
deviceTRUST requires some simple but essential configuration steps to be performed to enable the template for your remoting and DaaS environments. We will guide you step-by-step through simple deviceTRUST configuration steps to enable the template within your remoting or DaaS environment.
We will perform the following steps:
Step 1: Prerequisites
If the required deviceTRUST components (Agent, Console, Client Extension and License) are not yet installed, please visit the Getting Started for Remote guide and complete step 1 to 5 and then continue here with step 2 below.
Step 2: Contexts
The template has imported the following contexts:
| Context | Description | Customizations |
|---|---|---|
| Process Monitoring - SnippingTool | Evaluates if Snipping Tool is running on the remote device. Uses a custom property for evaluation. | None |
- If a context is not needed, it can be deactivated or deleted. In addition, the corresponding task sequence within the relevant action must be deleted too.
Step 3: Actions
The template includes an FSLogix App Masking and a Microsoft AppLocker enforcement action that actively controls access to applications, depending on the technology available. By default both actions are disabled.
| Action | Description | Default State | Customizations |
|---|---|---|---|
| Process Monitoring - Snipping Tool - Conditional Access - Enforcement | Denies access to the session if Snipping Tool is running on the remote device. | Activated | None |
- If the action has been disabled, the context will still be created.
Troubleshooting
If your deviceTRUST installation or configuration does not work as expected, you can use the Troubleshooting guide to start troubleshooting.