Excluding a resource from protection

To exclude a resource from the protection scope in Kaspersky Security Center:

1. Open Kaspersky Security Center Administration Console.
2. In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
3. In the workspace, select the Policies tab.
4. Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
5. In the policy properties window, select the Application Privilege Control section in the list on the left.
6. In right part of the window, the Application rules section, click the Settings button located in the lower part of the section.
7. In the Applications window that opens, on the Protected resources tab, exclude the resource from the protection scope in one of the following ways:
   • Disable protection of a resource. To do so, in the left part of the tab, in the list of protected resources, select the resource for which you want to disable protection and clear the check box next to its name.
   • Add the resource to the list of exclusions from protection by the Application Privilege Control component. To do this, perform the following actions:
     1. Click the Exclusions button in the upper-right part of the Protected resources tab.
     2. In the Exclusions window that opens, open the context menu of the Add button and select the type of resource that you want to add to the list of exclusions from the protection provided by the Application Privilege Control component: File or folder or Registry key.
     3. In the Protected resource window that opens, in the Name field, enter a name for the protected resource.
     4. Click the Browse button.
     5. In the window that opens, specify the necessary settings depending on the type of protected resource added to the list of exclusions from the protection provided by the Application Privilege Control component, and click OK.
     6. In the Protected resource window, click OK.

        A new element appears in the list of resources that are excluded from protection by the Application Privilege Control component.

     7. Click OK in the Exclusions window.
8. In the Applications window, click OK.
9. Click the Apply button.

To exclude a resource from the protection scope in the local interface:

1. On the protected virtual machine, open the application settings window.
2. In the left part of the window, in the Endpoint control section, select Application Privilege Control.

   In the right part of the window, the Application Privilege Control component's settings are displayed.

3. Click the Resources button.

   The Applications window opens on the Protected resources tab.

4. Complete steps 7–8 of the previous instructions.

   If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.

5. To save changes, click the Save button.