Handling and preventing SONAR false positive detections
|Article:HOWTO80987|||||Created: 2012-10-24|||||Updated: 2014-09-21|||||Article URL http://www.symantec.com/docs/HOWTO80987|
You can change SONAR settings to mitigate false positive detections in general. You can also create exceptions for a specific file or a specific application that SONAR detects as a false positive.
You can also adjust settings and create exceptions for TruScan proactive threat scans, which run on Symantec Endpoint Protection clients version 12.0 or earlier. See Managing TruScan proactive threat scans for legacy clients.
If you set the action for high risk detections to log only, you might allow potential threats on your client computers.
Table: Handling SONAR false positives
Article URL http://www.symantec.com/docs/HOWTO80987