Whitelist mode?

Is it possible to setup comodo in a way that it will block everything except what it has rules explicitly allowing like a whitelist mode? In particular, with a managed environment using the comodo endpoint manager, I don’t see a way to prevent the users form receiving firewall or defense+ alerts when using the highest security modes (Custom mode for firewall and paranoid for defense+) so that I can configure the rules for the managed install. Ultimately I just want the managed endpoint to not popup configuration alerts for the users to setup the rules and be able to do all the configuration from the manager console.

In CIS 5.9 with ESM 2.0 you can manage these popups and select automated actions to deny unknown apps.