Excluding specific application actions from application control rules in local interface

In the local interface, you can disable an application's inheritance of restrictions from the parent process.

To exclude specific application actions from application control rules:

  1. On the protected virtual machine, open the application settings window.
  2. In the left part of the window, in the Endpoint control section, select Application Privilege Control.

    In the right part of the window, the Application Privilege Control component's settings are displayed.

  3. Click the Applications button.

    The Applications window opens on the Application Privilege Control rules tab.

  4. In the list of applications, select the desired application.

    If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.

  5. Right-click to bring up the application's context menu and select Application rules.

    The Application control rules window opens.

  6. Select the Exclusions tab.
  7. Select the check boxes next to application actions that do not need to be monitored or that need to be allowed:
    • Do not scan opened files.
    • Do not monitor application activity.
    • Do not inherit restrictions of the parent process (application).
    • Do not monitor child application activity.
    • Allow interaction with application interface.
    • Do not scan network traffic.
  8. In the Application control rules window, click OK.
  9. In the Applications window, click OK.
  10. To save changes, click the Save button.
Page top