Open the Kaspersky Security Center Administration Console.
In the console tree, select Policies.
Select the necessary policy and double-click to open the policy properties.
In the policy window, select Advanced Threat Protection → Host Intrusion Prevention.
Intrusion Prevention settings
In the Application processing rules block, use the Trust digitally signed applications check box to enable or disable automatic assignment to the Trusted group for applications containing the digital signature of trusted vendors.
If this check box is cleared, the Host Intrusion Prevention component does not consider digitally signed applications to be trusted, and uses other parameters to determine their trust group.
In the main window of the Web Console, select Devices → Policies & Profiles.
Click the name of the Kaspersky Endpoint Security policy.
The policy properties window opens.
Select the Application settings tab.
Go to Advanced Threat Protection → Host Intrusion Prevention.
Intrusion Prevention settings
In the Application processing rules block, use the Trust digitally signed applications check box to enable or disable automatic assignment to the Trusted group for applications containing the digital signature of trusted vendors.
If this check box is cleared, the Host Intrusion Prevention component does not consider digitally signed applications to be trusted, and uses other parameters to determine their trust group.
In the application settings window, select Advanced Threat Protection → Host Intrusion Prevention.
In the Application processing rules block, use the Trust digitally signed applications check box to enable or disable automatic assignment to the Trusted group for applications containing the digital signature of trusted vendors.
If this check box is cleared, the Host Intrusion Prevention component does not consider digitally signed applications to be trusted, and uses other parameters to determine their trust group.