Trust Entities auto-authorizes software changes that match the properties of Trust rules assigned to Trust Rulesets. Each trust rule contains one or more Types of trust rule properties that define the parameters for auto-authorizing software changes.
By using the trust entities feature, you can proactively auto-authorize software changes
on the agent thus reducing the number of software change events sent to Workload Security.
For example, any agent undergoing regular OS updates creates several new software
changes each time a patch is applied. By configuring appropriate trust rules and applying
them to those agents, you can auto-authorize the software changes on the agent, and
avoid having to manually manage them from the the Workload Security Actions tab or as Application Control security events.
To auto-authorize software changes using trust entities, you need to configure Trust rules, assign them to Trust Rulesets, and Assign a trust ruleset to policies or computers.
For information on how to allow or block software changes that are not being auto-authorized
with the trust entities feature, see View and change Application Control software rulesets.
API documentation is available for Trust rules.
Throughout this document, source refers to the process that creates a software change, whereas target is used when referring to the software change itself.