I have an internal application blocked by application control as "VASR_VIOLATION_DETECTED" events.
I have created Defined by pass rule below but I still have the same issue .
Please see below the event generated and defined bypass rule created
Policy Discovery is not available on my epo console any suggestion?
Menu | Application Control | Policy Discovery to open the Policy Discovery
Any help will be helpful for me.
Have you got host intrusion prevention agent installed on that system?
As per application control best practice document, if you have HIPS installed on a system, it is safe to disable memory protection in App Ctrl.
Please check if the Policy got applied on the endpoint. Also the policy will be applicable for the next run of the application(which I dont think is the issue here).
If you still dont see success, please file a case with support.