The McAfee documents state that the option to add MD5 Hash Values to blacklists are located under the Policy --> <Admin Domain> --> Intrusion Prevention --> Exceptions. When I navigate to this section of the NSP, the options are limited to Ignore Rules and SSL Decryption. I am assuming this is because there is no Endpoint Intelligence Configured. I'm also assuming NTBA appliance is required to have Endpoint Intelligence configured. Am I correct that there is no way to Blacklist Hash Vallues without these two integrations setup and configured?
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.