cancel
Showing results for 
Search instead for 
Did you mean: 
bob325
Level 7
Report Inappropriate Content
Message 1 of 4

SolidCore 6.1.3// VASR_VIOLATION_DETECTED exclusions

Hi  team

I have  an internal  application  blocked  by  application  control as  "VASR_VIOLATION_DETECTED" events.

I have  created  Defined  by  pass  rule  below  but  I still  have  the  same  issue .

Please  see  below  the  event generated  and  defined  bypass  rule  created

EVENTS.png

Policy  created

Policy  Discovery  is  not available  on  my  epo  console  any  suggestion?POLICY1.png

Menu | Application Control | Policy Discovery to open the Policy Discovery

Any  help  will be  helpful  for  me.

Thanks 

Bob

.

3 Replies

Re: SolidCore 6.1.3// VASR_VIOLATION_DETECTED exclusions

Hi,

Have  you got host intrusion prevention agent installed on that system?

As per application control best practice document, if you have HIPS installed on a system, it is safe to disable memory protection in App Ctrl.

Thanks

Highlighted
bob325
Level 7
Report Inappropriate Content
Message 3 of 4

Re: SolidCore 6.1.3// VASR_VIOLATION_DETECTED exclusions

Hi ,

HIPS is  not  installed  on  the  machine

Thanks


neelima
Level 12
Report Inappropriate Content
Message 4 of 4

Re: SolidCore 6.1.3// VASR_VIOLATION_DETECTED exclusions

Bob,

Please check if the Policy got applied on the endpoint. Also the policy will be applicable for the next run of the application(which I dont think is the issue here).

If you still dont see success, please file a case with support.

Thanks,

Member Rewards
McAfee Community rewards active and helpful members just like you. Click here to take a look at the first community members who received a special reward and were recognized by McAfee leader, Aneel Jaeel, for their participation and trusted knowledge in the community.