Managing exceptions for Symantec Endpoint Protection

Article:HOWTO55153  |  Created: 2011-06-29  |  Updated: 2011-12-16  |  Article URL http://www.symantec.com/docs/HOWTO55153
Article Type
How To


Subject


Managing exceptions for Symantec Endpoint Protection

You can manage exceptions for Symantec Endpoint Protection in the Symantec Endpoint Protection Manager console.

Table: Managing exceptions

Task

Description

Learn about exceptions

You use exceptions to exclude items from scans and protection on your client computers.

See About exceptions to Symantec Endpoint Protection.

Review the types of files and folders that Symantec Endpoint Protection automatically excludes from scans

Symantec Endpoint Protection automatically creates exceptions, or exclusions, for some third-party application and some Symantec products.

You can also configure individual scans to scan only certain extensions and skip any other extensions.

See About the files and folders that Symantec Endpoint Protection excludes from virus and spyware scans.

Create exceptions for scans

You add exceptions in an Exceptions policy directly. Or you can add exceptions from log events on the Monitors page.

See Creating exceptions for Symantec Endpoint Protection.

See Creating exceptions from log events in Symantec Endpoint Protection Manager.

Restricting the types of exceptions that users can configure on client computers

By default, users on client computers have limited configuration rights for exceptions. You can restrict users further so that they cannot create exceptions for virus and spyware scans or for SONAR.

Users can never force an application detection and they never have permission to create Tamper Protection exceptions.

Users also cannot create application control exceptions.

See Restricting the types of exceptions that users can configure on client computers.

Check the logs for detections for which you might want to create exceptions

After Symantec Endpoint Protection makes a detection, you can create an exception for the detection from the log event.

For example, you might want to create an exception for a file that scans detect but that your users request to download.

See Creating exceptions from log events in Symantec Endpoint Protection Manager.

Configure intrusion prevention exceptions

You can specify exceptions for intrusion prevention.

You can also set up a list of excluded hosts for intrusion prevention.

Intrusion prevention exceptions are configured in an Intrusion Prevention policy.

See Managing intrusion prevention on your client computers.


Legacy ID



v36686987_v59371754


Article URL http://www.symantec.com/docs/HOWTO55153


Terms of use for this information are found in Legal Notices