"Trusted Application Protection" Dashboard in Endpoint Privilege Management

The report shows information about Trusted Application Protection (TAP) incidents. A TAP incident is a child process of a Trusted Application blocked due to a Trusted Application policy, or, a DLL blocked from loading by a Trusted Application because it does not have a trusted owner or trusted publisher.

There are no advanced filters for the Trusted Application Protection dashboard.

Chart Description
Trusted Application Protection incidents over the time period.

A column chart showing the number of incidents filtered by the trusted application.

Click the chart to open the Process Details table with the Trusted Application Protection Dashboard with time range filters applied.

Trusted Application Protection incidents, by application

A table listing each trusted application, the number of TAP incidents, the number of Targets, the number of Users, and the number of Hosts affected.

Click the Incidents number to open the Process Details report with the Trusted Application Name filter applied.

Click the Targets number to open the TargetsAll table with the Trusted Application Name filter applied.

Top 10 targets (top # of total #)

The top 10 targets for TAP incidents.

Click the Target to open the Application report with the Application Type and Distinct Application ID filters applied.

Click the Incident number to open the Process Details report with the Distinct Application ID filter applied. Clicking the Users or Hosts number opens the Users or Hosts list respectively.