Editing Adaptive Anomaly Control message templates

When a user tries to do an action, blocked by Adaptive Anomaly Control rules, Kaspersky Endpoint Security displays a message that potentially harmful actions are blocked. If the user believes that an action was mistakenly blocked, the user can use the link in the message text to send a message to the local corporate network administrator.

Special templates are available for the message about blocking potentially harmful actions and for the message to be sent to the administrator. You can modify the message templates.

To edit a message template:

  1. In the main application window, click the button icon_settings.
  2. In the application settings window, select Security ControlsAdaptive Anomaly Control.
  3. In the Templates block, configure the templates for Adaptive Anomaly Control messages:
    • Message about blocking. Template of the message that is displayed to a user when an Adaptive Anomaly Control rule that blocks a non-typical action is triggered.
    • Message to administrator. Template of the message that a user can be sent to the local corporate network administrator if the user considers the blocking to be a mistake. After the user requests to provide access, Kaspersky Endpoint Security sends an event to Kaspersky Security Center: Application activity blockage message to administrator. The event description contains a message to administrator with substituted variables. You can view these events in the Kaspersky Security Center console using the predefined event selection User requests. If your organization does not have Kaspersky Security Center deployed or there is no connection to the Administration Server, the application will send a message to administrator to the specified email address.
  4. Save your changes.

See also:

Editing templates of Web Control messages

Editing templates of Device Control messages

Editing Application Control message templates

Editing templates of encrypted file access messages
Page top