Our end users download the Adobe Creative Cloud desktop app from the link below. Our application control software (Carbon Black) blocks the installation as unapproved. We have a software rule to permit publishers that have a trusted signing certificate as well the Publisher name listed in the metadata of the file. Is it possible to have Adobe include the Publisher name in the metadata? We obviously cannot create a software rule around the name, due to the fact a threat actor can create a malicious version of the file under the same name.
Creative Cloud desktop app:
do you have an enterprise or teams subscription?
Can you please try to download the Package from the Admin console and then deploy it to the machine.
We don't have a method of software deployment in our organization nor do I have access to what you are referring to above.. This is all done through a manual process. The user individually goes to the Creative Cloud website and downloads the file manually.
Here is the process of how our users attempt to install Creative Cloud
1. They perform a Google Search for "How to download Adobe Creative Cloud" or something similar.
2. They locate the following URL: https://creativecloud.adobe.com/apps/download/creative-cloud
3. Click on the Download button.
4. They then proceed to login using their assigned email address which is what the license is tied to.
The issue is the publisher is omitted from Creative_Cloud_Set-Up.exe file that is downloaded from Step 2.
I believe the issue is this was posted in the wrong forum. We have neither. Purchases are capex'd.
I think you need a business purchase (team or enterprise) and central deployment. Individual licenses are not suitable for business, because the business cannot cancel or transfer when staff change.
Licensing is not my department. My focus is more so around Application Control/Cybersecurity. Approving trusted applications by publishers and the like. Our organization may very well have what you stated above, but I have no visibility into that as I am a SOC Analyst for the organization.
Hi @Steve293930527qpc if you have an enterprise or Teams subscription I request you to please raise a case from your Admin Console (or connect internally to who has access to Adobe Admin Console) as it will be easy for us to track and update you with the information.
As logs and builds can not be shared publically. Thank you!