Configuring the settings for assigning applications to trust groups
If participation in Kaspersky Security Network is enabled, Kaspersky Endpoint Security sends KSN a query about the reputation of an application each time the application is started. Based on the received response, the application may be moved to a trust group that is different from the one specified in the Host Intrusion Prevention component settings.
Kaspersky Endpoint Security always places applications signed by Microsoft certificates or Kaspersky certificates into the Trusted group.
To configure the settings for placement of applications in trust groups:
- In the lower part of the main application window, click the
button. - In the application settings window, select Protection → Advanced Threat Protection → Host Intrusion Prevention.
- If you want to automatically put digitally signed applications of trusted vendors into the Trusted group, select the Trust digitally signed applications check box in the Configure restrictions for applications block.
- In the Trust group for unknown applications block, select the relevant trust group.
- Save your changes.
Trusted vendors are those software vendors that are included in the trusted group by Kaspersky. You can also add vendor certificate to the trusted system certificate store manually.