Endpoint Protection

 View Only
Back to discussions
Expand all | Collapse all

How create exclusion for especific program in Application control policy

  • 1.  How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 03:25 PM
      |   view attached

    Hi...

    I need Help.

    I dont know how create an exclusion for a program in  the rule "Stop Software Installer [AC8]" in endpoint protection.

    I enter in edit in this rule and i create a exclusion as follows:

    \\SQL_PELIKAN\*

    To exclude all executables who are in this share folder.

    Even if i created this exception in the rule not allowed the execution for executables in this server.

     

     



  • 2.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 03:28 PM

    I don't it will work for remote shares. Is that what this is?



  • 3.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 03:45 PM

    What I need is to create a rule or an exception to allow the installation of software that is in a shared folder. And lock the other software installation.



  • 4.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 03:46 PM

    What I need is to create a rule or an exception to allow the installation of software that is in a shared folder. And lock the other software installation.



  • 5.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 07:11 PM
    You can add to centralized exception Pl check this article Title: Creating Centralized Exceptions Policies in the Symantec Endpoint Protection Manager 11 Article:TECH104326 Article URL http://www.symantec.com/docs/TECH104326 You can also apply the rule in your way using fingerprint Title:Creating a file fingerprint list with checksum.exe Article:HOWTO81199 Article URL http://www.symantec.com/docs/HOWTO81199 When edit the rule you can view option button and you can add your software finger print.


  • 6.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 08:01 PM

    Have you tried adding it to the list of processes in the first rule?   That process that match rule are allowed to install.



  • 7.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 14, 2014 08:02 PM

    and you are allowed to specify Netork Drives under "Only match processes running from the following drive types"



  • 8.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 18, 2014 01:18 AM

    Are you able to copy the file  "Stop Software Installer [AC8]" from your Share drive to Local host with out any issues ? OR, Is it getting blocked while copying ?



  • 9.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 18, 2014 01:56 AM

    Give a glance to this link

    http://www.symantec.com/business/support/index?page=content&id=TECH102525



  • 10.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 18, 2014 01:58 AM

    Network Threat Protection rules are blocking a legitimate application from accessing the network, and you wish to allow this legitimate traffic.

     http://www.symantec.com/docs/TECH104526



  • 11.  RE: How create exclusion for especific program in Application control policy

    Posted Aug 18, 2014 06:01 AM
      |   view attached

    Erm, the exclusion you're adding will allow any application to create, delete or modify exe and dll files in the location you designated (the network share).

    This exclusion will not allow you to install from that location (if that's what you're trying to do).

    To flick this around and allow you to install from that location, you need to add the share and installer to the earlier rule (see my screenie attached).  This will allow the target process to create exe and dll files in any place on the local machine.