Endpoint Protection

 View Only

  • 1.  SEP - Centralized Exclusion Questions

    Posted Jul 05, 2011 09:32 AM

    I have 3 questions about centralized exclusions:

    1. What is the proper syntax for using the %[PROGRAM_FILES]% variable? Example: I want to exclude c:\program files\Application\Stuff. Is the proper exclusion build for that folder: %[PROGRAM_FILES]%Application\Stuff or do I have to include the back slash in front of application like this: %[PROGRAM_FILES]%\Application\Stuff
    2. If I use the %[PROGRAM_FILES]% variable to build a folder exclusion, will that variable be included on multiple drives? For example, if I have a server with both c:\Program Files\Application\Stuff and d:\Program Files\Application\Stuff will both of those directories be excluded by using the %[PROGRAM_FILES]% variable?
    3. Based off this article it appears that I should setup folder level exclusions for my SQL servers. Can anyone think of why I would need to setup folder level exclusions if I am already excluding the following file extensions: mdf, ldf, ndf, trn, and bak.

    Thanks in advance!



  • 2.  RE: SEP - Centralized Exclusion Questions

    Posted Jul 05, 2011 10:25 AM

    that \ is not needed; 

    you can add it but it does not make any difference

    https://www-secure.symantec.com/connect/forums/centralized-exceptions-variable-question

     

    it takes OS path; if the path is same on D ;you have mention it explicitiy



  • 3.  RE: SEP - Centralized Exclusion Questions
    Best Answer

    Posted Jul 05, 2011 11:42 AM

    \ is optional over here

    %Program Files% is <ROOT>\Program Files

    it will not exclude all the program files.

    Folder level exclusions are needed for SQL so that SEP doesn't affect the performace of SQL.



  • 4.  RE: SEP - Centralized Exclusion Questions

    Posted Jul 06, 2011 09:10 AM

    Thanks Rafeeq. Helpful as usual.



  • 5.  RE: SEP - Centralized Exclusion Questions

    Posted Jul 06, 2011 09:11 AM

    Thank you.