cancel
Showing results for 
Search instead for 
Did you mean: 
serc09
Level 10
Report Inappropriate Content
Message 1 of 11

Folderexclusion

Jump to solution

Hey.

Customer wants the folder "C:\Programme\ABC\IntClients\" to be excluded from scanning.

In VSE 8.7 policies i can add exclusions in

On-Access Default Processes Policies

On-Access Processes with low risk Policies

On-Access Processes with low high Policies

Do i have to exclude the folder in all these 3 policies? And how do i have to write it in:

C:\Programme\ABC\IntClients*

C:\Programme\ABC\IntClients\

C:\Programme\ABC\IntClients\*

Hope someone can help me.

Regards

serc09

P.S.: using ePO 4.5

1 Solution

Accepted Solutions

Re: Folderexclusion

Jump to solution

Yo

The easiest way to do this is to add in the On-Access default processes policies.


Then you should write it like this:

C:\Programme\ABC

then just tick the checkbox that says "include subdirectories"

10 Replies

Re: Folderexclusion

Jump to solution

Yo

The easiest way to do this is to add in the On-Access default processes policies.


Then you should write it like this:

C:\Programme\ABC

then just tick the checkbox that says "include subdirectories"

serc09
Level 10
Report Inappropriate Content
Message 3 of 11

Re: Folderexclusion

Jump to solution

Ok, but i don't want to exclude all subdirectories of C:\Programme\ABC .

C:\Programme\ABC\IntClients <<< will this exclude ...\IntClients\ and all subdirs?

smalldog
Level 12
Report Inappropriate Content
Message 4 of 11

Re: Folderexclusion

Jump to solution

That's right! exclude ...\IntClients\ and all subdirs

Re: Folderexclusion

Jump to solution

C:\Programme\ABC\IntClients <<< will this exclude ...\IntClients\ and all subdirs?

Well if you've checked include all subdirs, it will exclude all subdirs under IntClients

serc09
Level 10
Report Inappropriate Content
Message 6 of 11

Re: Folderexclusion

Jump to solution

THX alot for your answers.

Regards

ser09

apoling
Level 14
Report Inappropriate Content
Message 7 of 11

Re: Folderexclusion

Jump to solution

Hello,

check out these two KB articles in connection with using exclusion patterns and techniques properly: KB54812 and KB57664

NB: a path should end in \ to mean that it is a folder.

Attila

serc09
Level 10
Report Inappropriate Content
Message 8 of 11

Re: Folderexclusion

Jump to solution

THX Attila

VERY HELPFUL !!!!

serc09

serc09
Level 10
Report Inappropriate Content
Message 9 of 11

Re: Folderexclusion

Jump to solution

Hey.

One more question to exclusions:

In VSE 8.7 policies i set under "On-Access Default Process Policies" to use different policies for processes with low/high risk.

When i now want to exclude all "**\*.xyz" files to be excluded, is it sufficient to add them under "Exclusions" in the "On-Access Default Process Policies", or do i have to exclude them in all 3 policies?

Regards

serc09

apoling
Level 14
Report Inappropriate Content
Message 10 of 11

Re: Folderexclusion

Jump to solution

Hello,

the high and low risk policies have normally different OAS policy, e.g. some settings are used in high risk policy which are not used or not as stringently used in low risk. These policies apply to files opened, written, deleted, etc. by processes (or child processes thereof) under the HR or LR policy page. These, I'd say, might not inherit all the exclusions from the default policy.

So normally yes, exclusions should be specified for all level policies, unless you know that, say, low risk processes are processes that never open the *.xyz file (and any child processes thereof, too) or exclusions do not get inherited across default and HR-LR policies.

Attila