How to Add Exception in Kaspersky Endpoint Security 10

How to configure a trusted zone in Kaspersky Security Center 10

Back to "General Info"

Latest update: May 28, 2021 ID: 14085

A trusted zone is a list of files, folders and applications which Kaspersky Endpoint Security for Windows doesn't scan.

In Kaspersky Security Center, you can remotely adjust a trusted zone:

• Exclude files of certain formats, files by mask, or specific files, folders or processes from the scan scope.
• Add applications to the list of trusted applications.

How to exclude files and folders from scan scope of Kaspersky Endpoint Security 10 for Windows

1. Open Kaspersky Security Center.
2. Go to Policies.
3. Open the Properties of the Kaspersky Endpoint Security 10 policy for Windows and select General Protection Settings.
4. In the Scan exclusions and trusted zone section, click Settings.

5. In the Scan exclusions tab, click Add.
6. Set the exclusions:
   • Enter the name or mask of the file or folder. To do so, select the checkbox File or folder and click Select file or folder.
   • Enter the object name or mask according to the Virus Encyclopedia classification. To do so, select the checkbox Object name and click Enter object name.
   • Set the exclusions for protection components.
7. Click OK.

Kaspersky Endpoint Security 10 for Windows will not scan the files and folders you have added.

How to exclude files and folders from scan scope of Kaspersky Endpoint Security 11 for Windows

1. Open Kaspersky Security Center.
2. Go to Policies.
3. Open the Properties of the Kaspersky Endpoint Security 11 policy for Windows and select General Settings → Exclusions.
4. In the Scan exclusions and trusted zone section, click Settings.

5. In the Scan exclusions tab, click Add.
6. Set the exclusions:
   • If you want to exclude a file or folder from scan, select the File or folder checkbox, click select file or folder, then enter the name or mask of a file or folder. To add subfolders to the exclusions, set the Including subfolders checkbox.
   • If you want to exclude specific objects, select the Object name checkbox, click enter object name, then enter a name or name mask for the object according to the Virus Encyclopedia classification.
   • If you want to exclude an object with a specific hash sum, select the Object hash checkbox, click enter object hash, then enter the SHA256 for the object according to the Virus Encyclopedia classification.
   • If you want the exclusion to be applied to specific protection components only, click any → select components and select the checkboxes beside the components you want the scan exclusion to be applied to.
7. Click OK.

Kaspersky Endpoint Security 11 for Windows will not scan the files and folders you have added.

How to add an application to trusted in Kaspersky Endpoint Security 10 for Windows

1. Open Kaspersky Security Center.
2. Go to Policies.
3. Open the Properties of the Kaspersky Endpoint Security 10 policy for Windows and select General Protection Settings.
4. In the Scan exclusions and trusted zone section, click Settings.

5. Go to the Trusted applications tab and click Add.
6. Enter the path to the executable file and select the checkboxes for actions:
   • Do not scan opened files. Files opened by trusted applications are not scanned.
   • Do not monitor application activity. File and network activity of applications are not controlled.
   • Do not inherit restrictions of the parent process (application). Application activity is controlled according to the rules set by the system administrator.
   • Do not monitor child application activity. File and network activity of child applications are not controlled.
   • Do not block interaction with the application interface. Allow management of Kaspersky Endpoint Security 10 for Windows through remote access tools (e.g. Remote Administrator).
   • Do not scan network traffic. Incoming and outgoing traffic from trusted applications is not scanned.
7. Click OK.

Kaspersky Endpoint Security 10 for Windows will not control the activity of trusted applications.

How to add an application to trusted in Kaspersky Endpoint Security 11 for Windows

1. Open Kaspersky Security Center.
2. Go to Policies.
3. Open the Properties of the Kaspersky Endpoint Security 11 policy for Windows and select General Settings → Exclusions.
4. In the Scan exclusions and trusted zone section, click Settings.

5. Go to the Trusted applications tab and click Add.
6. Enter the path to the executable file and select the checkboxes for actions:
   • Do not scan opened files. Files opened by trusted applications are not scanned.
   • Do not monitor application activity. File and network activity of applications are not controlled.
   • Do not inherit restrictions of the parent process (application). Application activity is controlled according to the rules set by the system administrator.
   • Do not monitor child application activity. File and network activity of child applications are not controlled.
   • Do not block interaction with the application interface. Allow management of Kaspersky Endpoint Security 10 for Windows through remote access tools (e.g. Remote Administrator).
   • Do not block interaction with AMSI Protection Provider. Requests of trusted applications to scan objects are not controlled by AMSI Protection Provider.
   • Do not scan network traffic. Incoming and outgoing traffic from trusted applications is not scanned.
7. Click OK.

Kaspersky Endpoint Security 11 for Windows will not control the activity of trusted applications.

Was this information helpful?

Yes No

Thank you

How to Add Exception in Kaspersky Endpoint Security 10

Source: https://support.kaspersky.com/14085

Share this post