To create a prevention rule:
This opens the prevention rule table
This opens the prevention rule creation window.
If you selected the Notify user about blocking file execution check box and an attempt is made to execute a file prevented from running, the user is notified that an execution prevention rule was triggered by this file.
This option is available only when distributed solution and multitenancy mode is enabled.
If you are using Kaspersky Endpoint Security for Linux in the role of the Endpoint Agent component, the prevention rule creation functionality is not available. When creating a prevention rule, if you select a host with Kaspersky Endpoint Security for Linux or all hosts as the scope of the rule, the rule is not applied or is only applied to hosts with Kaspersky Endpoint Agent for Windows and Kaspersky Endpoint Security for Windows.
The file startup prevention will be created.
You can also import prevention rules.
Users with the Security auditor role cannot create file launch prevention rules.
Users with the Security officer role cannot access prevention rules.