The following table shows the trusted directory fields and their possible values.

Table 1. Trusted Directory Parameters

Field

Description

Name

Name used to identify the automatic approval instance in the Trusted Directories table. This can be any text.

Computer

Agent-managed computer that is your software deployment server. Use the computer name as it appears on the Computers page. For computers in domains, this includes both the domain and the computer name, in one of the following formats:

DOMAIN_NAME\computer_name (Windows only)

computer_name.domain.extension (all platforms)

If you edit the computer name for an existing Trusted Directory and the Carbon Black App Control Server recognizes multiple computers by the new name, trusted directories are created for each one.

Directory

Deployment directory for the deployment server. Depending on the deployment technology, you might need to separately specify more than one deployment directory. For example, Microsoft WSUS requires the following directories:

C:\WSUS\WsusContent\

C:\Program Files\Update Services\Selfupdate\

Use of removable drives for trusted directories is not recommended. Removable drives are not re-scanned when removed and reattached, so new software might not be trusted.

When you enter a path, be sure to use the correct directory delimiters, and to use only characters and legal formats for paths in the platform. The Carbon Black App Control Server does not convert paths between platforms. Linux files and paths are usually case sensitive.

Description

Optional additional description of this trusted directory.

Policies

Select the policies applied to the trusted directory:

All Current and Future policies – Apply this trusted directory to all current policies and any policies created in the future.

Selected policies – Apply the trusted directory to the selected policies only.

Note:

  • The policy list populates upon selection.
  • You can only select policies that you have permission to manage.

Status

Select one of the following:

Enabled – Software present in the trusted directory on the deployment server is approved for installation on all computers.

Disabled – Software present in the trusted directory on the deployment server is not approved for other computers. Software installed from this directory is treated according to the settings of the policy to which the deployment server belongs.