Managing IDS exclusions

Users with the Senior security officer role can add Kaspersky IDS rules that have resulted in medium or high importance alerts to scan exclusions. Kaspersky Anti Targeted Attack Platform does not create alerts for excluded IDS rules.

You can add to exclusions only IDS rules defined by Kaspersky. If you do not want to apply a user-defined IDS rule when scanning, you can disable this rule or delete it.

Users with the Security auditor role can view the list of IDS rules added to exclusions, and view the properties of a selected rule.

Users with the Security officer role cannot view the list of IDS rules added to exclusions.

In this Help section

Viewing the list of IDS rules added to exclusions

Adding an IDS rule to exclusions

Editing the description of an IDS rule added to exclusions

Removing a IDS rule from exclusions

Page top