I use ENS 10.5.2 with Agent 5.0.5 and configured from EPO- Server.
I Need to allow some .VBS scripts from the **/Windows/temp/*.vps Folder but the Rule "ACCESS PROTECTION 24h -> Executing scripts by Windows script host (CScript.exe or Wscript.exe) from common user folders " is blocking it, even though i wrote an Exception for it in the Rule itself.
to Keep it simple i excluded **Windows\Temp\*.vbs in the Rule but .vbs Scripts Keep getting blocked.
i do not know what is wrong and my config. it does not matter if i address the single file or if i allow all *.vbs in **/temp/*.vbs Folders. they get blocked anyway.
this rule is McAfee defined and you cannot exclude target paths/files. But you can recreate this rule: just create a new rule, add the cscript, wscript, ... executables under "Ausführbare Dateien" and add the TEMP folders under "Untergeordnete Regeln"/"Ziele" but add a "Ziel" with **\Windows\Temp\*.vbs and "Einschlussstatus" is "Ausschließen".
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.