Device Posture Application Checks
https://github.com/cloudflare/cloudflare-docs/blob/production/content/cloudflare-one/identity/devices/warp-client-checks/application-check.md
For configuring an Application Check, you are required to provide an Application Path.
As an example, I'm trying to configure a rule that checks whether or not Windows Defender is running.
"C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe"
How does the check function on Windows function? Is there any way to target the file path with a glob? Seems pretty unmanageable to retarget to each update.
GitHub
cloudflare-docs/content/cloudflare-one/identity/devices/warp-client...
Cloudflare’s documentation. Contribute to cloudflare/cloudflare-docs development by creating an account on GitHub.
2 Replies
I don't see any way to do that more dynamically, and it looks like others have hit it in the past: https://community.cloudflare.com/t/cf-access-device-posture-for-windows-defender/349137
You could try posting about it on the forums again as a suggestion or just question, the Zero Trust team is there, but not on Discord. looks like it simply might just not be feasible right now though
Appreciate the response. It looks like I'll have to figure out a workaround since the feature is so limited.