Allow Listing Policies
Allow listing is a type of policy that allows applications to run on your endpoints. You can think of allow listing as a neutral policy type because it does not alter an application's default permissions, it merely signifies that the application is “known/trusted” and allowed to run. Although simple allow listing follows normal, user-level credentials, allow listed applications are also often paired with Elevation Policies outlined Elevation Policies.
The following examples are available:
Allow Listing Policies without Actions
If an application is allow listed under a user context instead of group context and without an action specified, IBM Security recommends to use the Administrators (Include Disabled) filter for the policy to execute as desired.