Endpoint Protection

 View Only

  • 1.  Download Insight Exceptions - Does not seem to be excepting folder

    Posted Apr 04, 2014 02:41 PM

    We recently pushed out 12.1.4 to a subset of our user community and have been recieving false positives from download insight.  I am waiting for the team responsible for the application to get it to symantec but in the meantime we have been adding exceptions to the list.  However we continue to see risk detections on one folder that was added to the exceptions using a variable.  The folder is \users\%user%\appdata\local\assembly\dl3.  I've added using both [common_appdata] and %userprofile% for the users\%user% portion but we continue to see this folder detected for individual users.



  • 2.  RE: Download Insight Exceptions - Does not seem to be excepting folder

    Posted Apr 04, 2014 02:44 PM

    I believe insight only applies to files. Have you added the file name as an exclusion?



  • 3.  RE: Download Insight Exceptions - Does not seem to be excepting folder

    Posted Apr 04, 2014 02:57 PM

    We've applied file names, risk, Web domains and folders.  Guess I'll be skipping the folders.  I'm assuming risk includes security risks and virus found?  Or should I just stick with add file solely?



  • 4.  RE: Download Insight Exceptions - Does not seem to be excepting folder
    Best Answer

    Posted Apr 04, 2014 03:05 PM

    Insight makes a decision on the file based on reputation data in Symantec's database. Ideally, the best way would be to add the web domain. It sounds like you've done this though.

    If you go into the Risk log in the SEPM you should have the option to add the file to the policy from here...

    Did you verify the client policy serial matches what's in the SEPM?



  • 5.  RE: Download Insight Exceptions - Does not seem to be excepting folder

    Posted Apr 04, 2014 04:07 PM

    Policies are up to date.  Guess I'll just stick to adding the web domains and files until they get this application submitted.  Thanks again.