Jump to content

Archived

This topic is now archived and is closed to further replies.

sdnian

Policy Setting - Exclusions

Recommended Posts

I've two questions about policy settings..

1. The EXCLUSIONS settings of policy in the sam ESMC server,  why have different setting items? 

2. The 'Detection exclusions' setting, if the client is EEA/EES < 7.2, could apply this settings?

Screenshot_2019-11-25_12-48-14.thumb.png.c4e04d2a2937c0179a23ff984762612f.png

Screenshot_2019-11-25_12-50-10.thumb.png.91a53742eadcd007bc30aeaa6b86e899.png

Share this post


Link to post
Share on other sites

Hello,

This is related to the new exclusions system. In case your policy has been converted from an old one, or you use older version of ESMC than 7.1, you will have the split of Performance & Detection Exclusions. If you create a new policy, you can only add performance exclusions to it, and detection exclusions would be handled via the new exclusions tab in the main menu. 

  1. So the one with detection exclusions is most probably a policy that included some detection exclsions (other than by path) before.
  2. The one which does not have them, is a policy which had not them defined before. 

Share this post


Link to post
Share on other sites

Thanks for your reply, I know how to manage the new exclusions.

Share this post


Link to post
Share on other sites

New detection exclusions are actually only created from "threats" section, when you click on the "exclude" and there is a new wizard, that will allow you to specify the exclusions conditions. Once created, they are visible in the "exclusions" view. You can then configure assignments to existing exclusions, to assign / de-assign them from individual computers. 

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...