We have VirusScan Enterprise 8.8 on Windows 7 workstation. In ePO I have a user rule to block EXE from being created in the TEMP folder. I am trying to install Office and it gets blocked when OSE00000.EXE trys to execute in the TEMP folder. I put an exclusion in the User rule and downloaded the new setting to the workstation. OSE00000.EXE is still being blocked when trying to run the setup for Office, what am I missing?
Solved! Go to Solution.
Are you creating ann user define detection under Unwanted program? if yes, that file will be always detected as that is not the right place to create the exclusion.
Do you have high and low risk enable? If not, then you sould create a normal exclusion under On Access Scan like this:
If that does not work, can you please show us an screenshot?
What about if you tick the box Files being executed and read access to file as the file needs to be access and executed in order to install.
Wouldn't that place more restrictions on this policy? The policy is working as designed, just cannot get this exclusion to work
Sure, sorry forget What I said you completely right!
I will try to test in my box and will let you know.
Just something quick.
Have you try the path like this?
**\Temp\ Does it Works?
Can you post the lines where we can see the block in Access protection log?