Can someone please tell me how to create an exception within HIPS 7.0 to allow all files to run under a sub-folder? We are currently pushing out the new Symantec Endpoint Client remotely to all of our servers and workstations. Rather than create an exception for each individual executable to successfully run, I would like to know how to create an exception to allow everything to run in the:
Would I just add the wildecard of * after the \Clt-Inst?
Please advise. I'd greatly appreciate it!
Thanks for any and all input.
One easy way would be to add that path and any EXE under it to your HIPS Trusted Applications policy. You could probably add the path as follows:
If you wanted EVERYTHING under the Clt-Inst folder to run, including anything in subfolders, you could make one as follows:
Be sure to check the "Trust for IPS" checkbox, and you should be fine.
Please note that ** wildcards should only be used in HIPS 8.0. For HIPS 7.0, only use a single * wildcard character.
KB71522 - Host Intrusion Prevention 8.0 Policy Migration Task adds additional wildcard characters
PD22894 - Host Intrusion Prevention 8.0 for ePO 4.5 Product Guide
Page 72 - FAQ — Use of wildcards in Firewall Rules
PD20106 - Host Intrusion Prevention 7.0.0 for ePO 3.6.1 Product Guide
Page 164 - Use of wildcards