Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

Tamper Protection

Jump to Best Answer

mthorpeMar 24, 2011 06:07 AM

Is there a way of adding my own prefixes for using wild cards to allow the below; Target: C:\Users\[username]\AppData\Local\Enterprise ...

RafeeqMar 24, 2011 07:22 AMBest Answer

I have seen this %userprofile% exclusions and seems to be working, Have seen that in few environments ...

mthorpeMar 24, 2011 07:35 AM

Excellent - just given it a go and appears to be working fine, ta very muchly.

1. Tamper Protection

0 Recommend
mthorpe
Posted Mar 24, 2011 06:07 AM

Reply Reply Privately
Is there a way of adding my own prefixes for using wild cards to allow the below;

Target: C:\Users\[username]\AppData\Local\Enterprise Vault Discovery Accelerator\Client\AcceleratorClient.Exe

There is a prefix for the all users appdata but i can't see one that would be dymanic to work irrespective of the user logged on (adding this manually for each users is not an option once it gets above 5)

I was thinking something along the lines of;

%[userprofile]%\AppData\Local\Enterprise Vault Discovery Accelerator\Client\AcceleratorClient.Exe

Will this work?

(using RU6MP2)

Cheers,

Mike
2. RE: Tamper Protection
Best Answer

0 Recommend
Rafeeq
Posted Mar 24, 2011 07:22 AM

Reply Reply Privately
I have seen this %userprofile% exclusions and seems to be working, Have seen that in few environments where they have used the userprofile variable.
3. RE: Tamper Protection

0 Recommend
mthorpe
Posted Mar 24, 2011 07:35 AM

Reply Reply Privately
Excellent - just given it a go and appears to be working fine, ta very muchly.

Copyright 2019. All rights reserved.

Powered by Higher Logic