What happens to applications that are detected by EPM but not explicitly handled?

When applications are detected by CyberArk Endpoint Privilege Manager (EPM) but not explicitly handled, those applications are placed in the Application Control Inbox. This process allows administrators to review and make decisions regarding these applications. The Application Control Inbox serves as a repository for applications that have not received a clear directive from the EPM policies, enabling organizations to manage and ensure the security of applications effectively.

This approach prioritizes security by preventing any automatic assumptions about the behavior or trustworthiness of unhandled applications. Placing them in the inbox allows for controlled oversight, ensuring that potentially harmful applications can be assessed and addressed appropriately before any decision is made on their approval or rejection within the organization.