Selecting a trust group for applications started before Kaspersky Endpoint Security
For applications that were started before Kaspersky Endpoint Security, only network activity is controlled. Control is performed according to the network rules defined in the Firewall settings. To specify which network rules must be applied to network activity monitoring for such applications, you must select a trust group.
Open the Kaspersky Security Center Administration Console.
In the Managed devices folder in the Administration Console tree, open the folder with the name of the administration group to which the relevant client computers belong.
In the workspace, select the Policies tab.
Select the necessary policy and double-click to open the policy properties.
In the policy window, select Advanced Threat Protection → Host Intrusion Prevention.
In the Application rights and protected resources block, click the Edit button.
For the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working setting, select the appropriate trust group.
In the main window of the Web Console, select Devices → Policies & Profiles.
Click the name of the Kaspersky Endpoint Security policy.
The policy properties window opens.
Select the Application settings tab.
Go to Advanced Threat Protection → Host Intrusion Prevention.
For the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working setting, select the appropriate trust group.
In the application settings window, select Advanced Threat Protection → Host Intrusion Prevention.
In the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working block, select the appropriate trust group.
Save your changes.
As a result, an application that is started before Kaspersky Endpoint Security will be put into the other trust group. Kaspersky Endpoint Security will then block the actions of the application depending on the trust group.