Creating an exclusion

Support

Support for business applications

Kaspersky Security for Virtualization 5.x Light Agent

Configuring the general anti-virus protection settings

Configuring the trusted zone

Configuring a trusted zone of Light Agent for Windows

Creating an exclusion

January 10, 2024

ID 65916

You can create a new exclusion or exclusion category containing exclusions for Light Agent for Windows whereby Kaspersky Security will not scan the specified files or folders and/or objects with the specified name.

Kaspersky Security does not scan an excluded object when a hard drive or folder that contains this object is specified at the start of a scan task. However, if you start a custom scan task for an object, Kaspersky Security scans the object even if you have created an exclusion for this object.

To create an exclusion in Kaspersky Security Center:

Open Kaspersky Security Center Administration Console.
In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
In the workspace, select the Policies tab.
Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
In the policy properties window, select the General Protection Settings section in the list on the left.
In the right part of the window, in the Exclusions and trusted zone section, click the Settings button.
The Trusted zone window opens on the Exclusions tab. The tab displays a list of added exclusions grouped by category.
If you want to add a new exclusion that does not belong to any of the predefined exclusion categories:
1. Click the Add button and select the Category option in the context menu.
2. In the Category window that opens, in the Category name field, enter the name of the new exclusion category and click OK.
If you want to add a new exclusion to the added category or to one of the predefined exclusion categories, select the category to which you want to add the exclusion.
Click the Add button and select the Exclusion option in the context menu.
In the Exclusion window that opens, perform the following operations:
- To exclude a file or folder from the protection and scan scope:
  1. In the Settings section, select the File or folder check box.
  2. Click the select file or folder link in the Exclusion description section to open the Name of file or folder window. Enter the path to a file or folder or a mask of the path to a file or folder, or select a file or folder in the folder tree.
  3. After selecting the object, click OK in the Name of file or folder window.
  The path to the added object appears in the Exclusion description section of the Exclusions window.
- To exclude objects with certain names according to the Kaspersky Virus Encyclopedia classification of malicious programs and other threats from the protection and scan scope:
  1. In the Settings section, select the Object name check box.
  2. Click the enter object name link in the Exclusion description section to open the Object name window. Enter the object name or name mask according to the classification of the Kaspersky Virus Encyclopedia.
  3. Click OK in the Object name window.
  The name of the added object appears in the Exclusion description section of the Exclusions window.
- To exclude a file from the protection and scan scope by its hash:
  1. In the Settings section, select the File hash check box.
  2. Click the enter file hash link in the Exclusion description section to open the File hash window. Enter the file hash calculated by the SHA-256 algorithm, or click the Browse button and select the file in the opened window.
  3. Click OK in the File hash window.
  The hash of the added file appears in the Exclusion description section of the Exclusions window.
Specify the Kaspersky Security components that should use the exclusion:
1. Click the any link in the Exclusion description section to open the select components link.
2. Click the select components link to open the Application components window.
3. Select the needed components.
4. In the Application components window, click OK.
If the components are specified in the settings of the exclusion, the object is not scanned only by these components of Kaspersky Security.

If the components are not specified in the settings of the exclusion, the object is not scanned by all components of Kaspersky Security.
Click OK in the Exclusion window.
The added exclusion appears in the list of exclusions on the Exclusions tab of the Trusted zone window. The configured settings of this exclusion appear in the Exclusion description section.
In the Trusted zone window, click OK.
Click the Apply button.

To create an exclusion in the local interface:

On the protected virtual machine, open the application settings window.
In the left part of the window, select the Anti-Virus protection section.
The anti-virus protection settings are shown in the right part of the window.

If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.
Complete steps 6–13 of the previous instructions.
To save changes, click the Save button.

Kaspersky Professional Services

Implementation services. Health check and security system configuration. Contact us if you need expert help.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.