Hello all,
Is it possible to create a policy or detection exception just for some applications which are listed in the Application Monitoring? My idea was for instance apply the App A monitoring only to Policy X and App B monitoring to Policy Y. Or create a compound rule to include Detection Z + App C as detection criteria.
After browsing for a while I couldnt find a way to do this.. since there is only one list with all Apps monitored. I got the idea to create exceptions (ignore monitoring) using the Filter by File Properties (Agent Config level) but I would need to be managing several Agents Configs and Agent Groups in order to achieve a similar result.
Thanks!