What can you do to quickly find unapproved software in Application Control?

Creating Allow or Block rules from the Actions menu is an effective way to quickly identify unapproved software in Application Control. When you set up these rules, you instruct the system on which applications are permitted or denied access based on defined criteria. This proactive approach allows the system to monitor software usage and easily flag or prevent the execution of any applications that do not comply with your established policies.

The other options may not address the immediate need for identifying unapproved software as efficiently. Disabling enforcement mode may remove protective measures entirely, allowing unauthorized software to run freely without detection. Utilizing the API to run a search can be a complex process that may require additional technical skills and can take time to implement. Running a complete system scan, while comprehensive, is often time-consuming and may not provide instant visibility into the use of unapproved software. By creating specific rules, you can streamline the process and enhance your security posture more effectively.