Configuring exclusions from protection of shared folders against external encryption

You can configure a list of exclusions from protection of shared folders against external encryption by adding the name or IP address of a remote computer to the list. The application will not monitor network activity from this computer in relation to shared folders.

To enable exclusions from protection of shared folders against external encryption, you must enable auditing of successful attempts to log in to the system (select the Success check box for the "Audit Logon" setting) in the Windows security policy. For details, please visit the Microsoft website.

If you added the address of a remote computer that accessed shared folders before Kaspersky Security was started to the list of exclusions from shared folder protection, the exclusion will not be applied for this computer. You need to restart this computer after starting Kaspersky Security to disregard the network activity from this computer during protection of shared folders against external encryption.

To exclude a remote computer from protection of shared folders against external encryption through Kaspersky Security Center:

  1. Open Kaspersky Security Center Administration Console.
  2. In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
  3. In the workspace, select the Policies tab.
  4. Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
  5. In the Light Agent for Windows policy properties window, select the System Watcher section in the list on the left.

    In the right part of the window, the System Watcher component's settings are displayed.

  6. In the General settings section, click the Settings button.

    The Settings window opens.

  7. In the Settings window, click the Exclusions button.

    The Exclusions window opens.

  8. In the Exclusions window, do one of the following:
    • If you want to add an IP address or computer name to the list of exclusions, click the Add button.
    • If you want to edit an IP address or computer name, select it in the list of exclusions and click the Edit button.

    The Computer window opens.

  9. In the Computer window, enter the IP address or name of the computer whose attempts to modify files in shared folders will not be monitored.
  10. In the Computer window, click OK.
  11. Click OK in the Exclusions window.
  12. Click the Apply button.

To exclude a remote computer from protection of shared folders against external encryption in the local interface:

  1. On the protected virtual machine, open the application settings window.
  2. In the left part of the window, in the Anti-Virus protection section, select System Watcher.

    In the right part of the window, the System Watcher component's settings are displayed.

  3. Click the Settings button.

    The Settings window opens.

    If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.

  4. Complete steps 7–11 of the previous instructions.
  5. To save changes, click the Save button.
Page top