Configuring addresses of exclusions from protection of shared folders against external encryption

The Audit Logon service must be enabled to enable exclusions of addresses from protection of shared folders against external encryption. By default, the Audit Logon service is disabled (for detailed information about enabling the Audit Logon service, please visit the Microsoft website).

The functionality for excluding addresses from shared folder protection does not work on a remote computer if the remote computer was turned on before Kaspersky Endpoint Security was started. You can restart this remote computer after Kaspersky Endpoint Security is started to ensure that the functionality for excluding addresses from shared folder protection works on this remote computer.

To exclude remote computers that perform external encryption of shared folders:

  1. In the main application window, click the Application settings icon in the form of a gear wheel. button.
  2. In the application settings window, select Advanced Threat ProtectionBehavior Detection.

    Behavior Detection settings window.

    Behavior Detection settings

  3. In the Exclusions block, click the Configure addresses of exclusions link.
  4. If you want to add an IP address or computer name to the list of exclusions, click the Add button.
  5. Enter the IP address or name of the computer from which external encryption attempts must not be handled.
  6. Save your changes.
Page top