Overview:
This document aims to explain the features of the ThreatLocker interface on your computer. Is it written for the Windows audience, but the Mac & Lunix clients are almost identical.
Process:
- Once ThreatLocker is installed, you will find an icon on your system tray that appears as the FSU logo:
- Right clicking the icon will yield a menu of options, as shown:
- You can use many of these including:
- Blocked Items - this will bring up a window that shows the history of denied files on your computer.
- Reset History - This will restore the "Request Access" popup when a file is denied *if* you have previously clicked "Don't Show Again"
- Rapid Check-in - ThreatLocker normally checks for updates every 60 seconds. If you are working with a technician who may be pushing settings to your machine, this button will begin checking in every five seconds for five minutes after the next check for updates.
- Realtime Unified Audit - this will bring up a troubleshooting window that shows you every file and all network traffic that ThreatLocker scans in real-time. You can watch to see if ThreatLocker is denying any file executions or network calls from this screen.
- Technicians can also utilize:
- Override - A special mode that disables blocking for very unique edge cases - this is unlikely to used at FSU.
- Maintenance Mode - This brings up a QR code that ThreatLocker administrators can scan to put the computer into special modes.