Configuring the trusted zone on Windows devices

Expand all | Collapse all

This section describes how to configure the trusted zone for devices running Windows.

To configure the trusted zone on Windows devices:

1. Open Kaspersky Endpoint Security Cloud Management Console.
2. Select the Security management → Security profiles section.

   The Security profiles section contains a list of security profiles configured in Kaspersky Endpoint Security Cloud.

3. In the list, select the security profile for the devices on which you want to configure the trusted zone.
4. Click the link with the profile name to open the security profile properties window.

   The security profile properties window displays settings available for all devices.

5. In the Windows group, select the Advanced section.
6. Click the Settings link below the Threat detection and exclusions section.

   The Threat detection and exclusions window opens.

7. Define the required settings:
   • Trusted applications
     1. In the Trusted applications section, click Settings.

        The Trusted applications window opens.

     2. Do any of the following:
        • To add an application that you want to be excluded from monitoring:
          1. Click the Add button.

             The Add a trusted application window opens.

          2. Under Path or path mask to the application, specify the path to the executable file of the application to be excluded.

             When specifying the path, you can use environment variables (for example, %ProgramFiles%).

          3. Select the check boxes next to the application activities that do not need to be controlled:
             • Do not scan files opened by the application

               All files that are opened by the application are excluded from scans. For example, if you are using applications to back up files, this feature helps reduce the consumption of the devices' resources by Kaspersky Endpoint Security for Windows.

               This option is applicable for the following Kaspersky Endpoint Security for Windows components: File Threat Protection.

             • Do not monitor application activity

               Kaspersky Endpoint Security for Windows does not monitor the application's file activity and network activity in the operating system.

               This option is applicable for the following Kaspersky Endpoint Security for Windows components: Firewall and Behavior Detection, Exploit Prevention, and Remediation Engine.

             • Do not monitor activity of all child applications

               Kaspersky Endpoint Security for Windows does not monitor the file activity and network activity of applications that are started by this application.

               This option is applicable for the following Kaspersky Endpoint Security for Windows components: Firewall and Behavior Detection, Exploit Prevention, and Remediation Engine.

             • Allow the application to interact with the Kaspersky Endpoint Security for Windows interface

               The remote access application is allowed to manage Kaspersky Endpoint Security for Windows settings through the Kaspersky Endpoint Security for Windows interface.

               This option is applicable for the following Kaspersky Endpoint Security for Windows components: Self-Defense.

             • Do not scan network traffic of the application

               Network traffic initiated by the application is excluded from scans.

               You can exclude either all traffic or only encrypted traffic from scans. You can also exclude only individual IP addresses and port numbers from scans.

               This option is applicable to all Kaspersky Endpoint Security for Windows components that scan network traffic.

          4. Click OK to close the Add a trusted application window.

             The added application appears in the list of exclusions in the Trusted applications window.

        • To modify an application that is excluded from monitoring:
          1. Select the check box next to the required application.
          2. Click the Edit button.

             The Add a trusted application window opens. It contains details about the selected application and excluded activities.

          3. Make the necessary changes.
          4. Click OK to close the Add a trusted application window.

             The modified application is displayed in the list of exclusions in the Trusted applications window.

        • To delete an application from the list of monitoring exclusions:
          1. Select the check box next to the required application.
          2. Click the Delete button.

             The deleted application disappears from the list of exclusions in the Trusted applications window.

     3. Click the Save button to save the changes.

   • Malware scan exclusions
     1. Click the Settings link below the Malware scan exclusions section.

        The Malware scan exclusions window opens.

     2. Do any of the following:
        • To add a file, a folder, or an object to the list of scan exclusions:
          1. Click the Add button.

             The New record window opens.

          2. By selecting or clearing the File or folder and Object name check boxes, select whether the exclusion must include a file or folder, an object, or both.
          3. In the Comment entry field, type a description of the exclusion being created.
          4. If the File or folder check box is selected, fill in the Name or name mask of file or folder field with the files or folders that you do not want to be scanned.

             When specifying files or folders, you can use environment variables (for example, %ProgramFiles%) and masks.

          5. If you want to exclude subfolders of the specified folder, select the Including subfolders check box.
          6. If the Object name check box is selected, fill in the Object name field with the objects that you do not want to be detected.

             When specifying objects, you can use masks.

          7. Under Protection components, select the components to which the new exclusion will apply:
             • All components—The exclusion will apply to all protection components available in Kaspersky Endpoint Security Cloud.
             • Selected components—The exclusion will apply only to the components that you select.

             Kaspersky Endpoint Security Cloud contains more protection components than those available for selection.

          8. Click OK to close the New record window.

          The added record appears in the list of scan exclusions in the Malware scan exclusions window.

        • To modify a record in the list of scan exclusions:
          1. Select the check box next to the required record.
          2. Click the Edit button.

             The New record window opens. It contains details about the selected scan exclusion.

          3. Make the necessary changes.
          4. Click OK to close the New record window.

          The modified record is displayed in the list of exclusions in the Malware scan exclusions window.

        • To enable or disable a record in the list of scan exclusions, enable or disable the toggle switch in the Status column.

          By default, all predefined scan exclusions are disabled.

        • To delete a record from the list of scan exclusions:
          1. Select the check box next to the required record.
          2. Click the Delete button.

          The deleted record disappears from the list of exclusions in the Malware scan exclusions window.

     3. Click the Save button to save the changes.

   • Network ports exclusions
     1. Click the Settings link below the Network ports exclusions section.

        The Network ports exclusions window opens.

     2. Do any of the following:
        • To add network ports that you want to be excluded from monitoring:
          1. Click the Add button.

             The Add ports to exclusions window opens. The window lists all network ports that are monitored by Kaspersky Endpoint Security Cloud.

          2. Select the check boxes next to the network ports to be excluded.
          3. Click OK to close the Add ports to exclusions window.

             The added network ports appear in the list of exclusions in the Network ports exclusions window.

        • To delete network ports from the list of monitoring exclusions:
          1. Select the check box next to the required network ports.
          2. Click the Delete button.

             The deleted network ports disappear from the list of exclusions in the Network ports exclusions window.

     3. Click the Save button to save the changes.

The trusted zone is updated.

After the security profile is applied on users' devices, Kaspersky Endpoint Security for Windows does not scan or monitor the objects that are added to exclusions. The objects that are deleted from exclusions are controlled.

Page top