US English (US)
ES Spanish

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

  • Contact Us
English (US)
US English (US)
ES Spanish
  • Home
  • Password Boss Knowledgebase
  • Password Boss Partner Documents
  • QUICK REFERENCE
  • Whitelisting, Exclusions and Firewall Configurations

Threat Locker Exclusions Settings for Password Boss

Learn how to configure Threat Locker exclusions for Password Boss.

Written by Owen Parry

Updated at July 27th, 2024

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

  • AutoElevate Knowledgebase
    New to AutoElevate? START HERE General & Troubleshooting Managing Rules Integrations Announcements FAQ Sales & Marketing
  • Password Boss Knowledgebase
    Using Password Boss Business Administration Password Boss Partner Documents
  • Changelogs for Autoelevate and Password Boss
  • Current Status
  • Marketing Toolkit
    MSP Marketing & Education Toolkit
+ More

Table of Contents

Setting up the exclusion in Threat Locker Editing the Default Chrome or Edge Chromium Policy

Setting up the exclusion in Threat Locker

Generally, Google Chrome and Edge Chromium do not require access to Command Prompt. However, some Chrome or Edge Chromium extensions may need to call out to Command Prompt to talk to other applications. If you don't have an extension that requires the ability to communicate with Command Prompt, we recommend that you Ringfence Chrome and Edge Chromium to prohibit communication with Command Prompt.

The default Google Chrome and Edge Chromium policies in ThreatLocker are set to block the ability of these browsers to call out to Powershell, RegSVR32, CScript, Command Prompt, and Forfiles. This prevents Chrome and/or Chromium from potentially launching other applications on your system, such as running a fileless malware attack.

However, suppose you use specific extensions, such as Password Boss, that need Chrome or Chromium to communicate with Command Prompt. In that case, you must edit the standard policy to allow for this communication.

Editing the Default Chrome or Edge Chromium Policy

Navigate to Application Control > Policies. Click the edit button (pencil icon) next to the policy that is interfering with the communication between your browser and Command Prompt (generally the policy closest to the top of your list).

Alternatively, you can reach the policy that is interfering by clicking the hyperlink located in the Unified Audit entry of one of the denied interactions, as shown below. Clicking the link will open the exact same policy edit window as using the edit button.

Scroll down to the Application Interaction tab. Select the 'X' next to Built-in/Windows Command Prompt (Built-in).

Click the 'Save' button in the top left.

Next, you will need to deploy policies. If this policy is for your organization, you can use the large 'Deploy Policies' button at the top of the main menu.

Alternatively, if this policy change is for multiple organizations, navigate to the Organizations page, select the checkbox next to the organizations that need this policy change, and then click the 'Deploy Policies' button at the top.

Before Ringfencing changes take effect, the application must be shut down and restarted. (e.g., shut down Chrome or Chromium)

password boss threat locker

Was this article helpful?

Yes
No
Give feedback about this article

Related Articles

  • Application Whitelisting or Exclusions
  • Firewall Whitelisting
  • Sentinel One Exclusions for Password Boss
  • Products
    • Privileged Access Management
    • Password Management
  • Solutions
    • For MSPs
    • For IT Pros
    • By Industry
  • Resources
    • Weekly Demos
    • Events
    • Blog
    • FAQ
  • Company
    • Leadership
    • Culture + Values
    • Careers
    • Awards
    • News & Press
    • Trust Center
    • Distributors
  • Get Pricing
  • Free Trial
  • Request a Demo
  • Support
  • Login
  • Contact
4925 Independence Parkway
Suite 400
Tampa, FL 33634
CALL US (813) 578-8200
  • Link to Facebook
  • Link to Linkedin
  • Link to Twitter
  • Link to Youtube
© 2023 CYBERFOX LLC ALL RIGHTS RESERVED  |  Privacy Policy

Knowledge Base Software powered by Helpjuice

Expand