[RESOLVED] Audit, compliance and deinstallation

Share your tips or issues concerning the WAPT Console or WAPT Agent here
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Locked
alain17
Messages: 24
Registration: June 17, 2022 - 07:32

July 12, 2022 - 11:35

Good morning,

I run a WAPT v2.2 server with an Enterprise license. One of the goals already achieved by our WAPT is to make deploying software and OS updates easier and more controlled. However, I am also interested in the compliance aspect, particularly with regard to what is marked in the documentation Regarding AppLocker and compliance in general:
  • No longer tolerate users downloading and running software binaries from their personal directory.
  • Start applying SRPs, also known as Applocker or WDAC, to improve application-level IT security.
  • Gather audit indicators for a better understanding of the state of installed IT systems and their overall security level.
I would like to detect the installation of software that does not comply with our security policy and uninstall it. The process does not need to be automated. So far, I haven't found how to uninstall software (e.g., Google Drive) within the console interface. My questions are therefore:
  1. Is it possible to uninstall software not managed by WAPT via the console? (and how)
  2. Is it possible, via a WAPT package, to detect and uninstall software identified as non-compliant? (audit function or something else?)
  3. Has anyone ever implemented such a compliance system for their company?
Thank you in advance for your answers :)
Last edited by alain17 on July 15, 2022 - 10:27, edited 1 time.
High
User avatar
dcardon
WAPT Expert
Messages: 1932
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

July 12, 2022 - 4:36 PM

Good morning,
For uninstalling software not installed by WAPT, you can refer to the following package:

https://store.wapt.fr/store/tis-removebloat

To retrieve the uninstallation keys, you can go to the machines and go to the "software inventory" tab.
Capture.PNG
Capture.PNG (95.38 KB) Viewed 2606 times
Sincerely,

Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
alain17
Messages: 24
Registration: June 17, 2022 - 07:32

July 15, 2022 - 10:26

Hello,

that's great, thank you very much for your offer. I'll take a closer look at that package, but it seems perfectly feasible.

Best regards.
High
Locked

Return to "WAPT usage (Console, Agent) / WAPT usage (Console, Agent)"


  • To go further with WAPT