Video Screencast Help

Policy exception

Created: 17 Jun 2014 | 2 comments

Hello,

 

In policy exception,We have enabled trusted web domain execption,DNS or hostfile chnage exception..

Does this setting potentially allow a user, or malware, to make changes to local hosts file, add URL exceptions, etc...?

 

Operating Systems:

Comments 2 CommentsJump to latest comment

Rafeeq's picture

No, it does not edit host file

.Brian's picture

You will get an alert if the HOSTS file is edited or if your DNS settings are changed. You can start to see a lot of DNS alerts if you use VPN.

And yes they will be able to add web domains, DNS, and HOSTS file changes as exceptions.

Unless your confident in your users, I wouldn't allow users to chanmge these and only manage from the SEPM side.

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.