Selecting a trust group for applications started before Kaspersky Endpoint Security
For applications that were started before Kaspersky Endpoint Security, only network activity is controlled. Control is performed according to the network rules defined in the Firewall settings. To specify which network rules must be applied to network activity monitoring for such applications, you must select a trust group.
Open the Kaspersky Security Center Administration Console.
In the console tree, select Policies.
Select the necessary policy and double-click to open the policy properties.
In the policy window, select Advanced Threat Protection → Host Intrusion Prevention.
Intrusion Prevention settings
In the Application rights and protected resources block, click the Edit button.
For the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working setting, select the appropriate trust group.
In the main window of the Web Console, select Devices → Policies & Profiles.
Click the name of the Kaspersky Endpoint Security policy.
The policy properties window opens.
Select the Application settings tab.
Go to Advanced Threat Protection → Host Intrusion Prevention.
Intrusion Prevention settings
For the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working setting, select the appropriate trust group.
In the application settings window, select Advanced Threat Protection → Host Intrusion Prevention.
In the Trust group for applications launched before Kaspersky Endpoint Security for Windows starts working block, select the appropriate trust group.
Save your changes.
As a result, an application that is started before Kaspersky Endpoint Security will be put into the other trust group. Kaspersky Endpoint Security will then block the actions of the application depending on the trust group.