Editing the file list

You can view and edit the fapolicyd trust options for each file on an endpoint.

Note: By default, executable files included in the Red Hat Enterprise Linux® Server or SUSE Linux Enterprise Server distribution are trusted through a rpmdb backend that generates a list of trusted files from the RPM databases.

Files from the RPM database are checked in the PowerSC GUI, but are greyed out. These files are trusted by default because they are part of the RPM database. You cannot deselect these RPM files.

The PowerSC GUI allows you to add or delete executable files from the /etc/fapolicyd/fapolicyd.trust file that contains the fapolicyd trusted (allow) list.

  1. Click the ellipse to the right of the endpoint that hosts the file for which you want to view or edit the fapolicyd trust options.
  2. Click Allow List.
  3. Click Edit fapolicyd File List. The fapolicyd File List Configuration page lists the directories and files that belong to the endpoint.
  4. To drill down to the files in a directory, double-click the directory to list the files. All the files in the directory are listed.
  5. The trust options for the current directory or files on the endpoint are listed in the Allowed column. The check box is selected in the Allowed column if the current directory or one or more files are trusted. To change the trust options, select or clear the check box for the current directory or for one or more files on the endpoint.
  6. Click Save.