Endpoint Protection

  • Private Community
 View Only

  • 1.  Software exclusion by Digital certificate (SEPM/SEP)

    Posted Apr 16, 2018 04:32 AM

    we have many programmers writing code. Creating execution folders on systems gives a safe haven for infected files. Currently that’s what I’m doing.

    We want to offer a file exclusion by Digital signature (Certificate).
    We have already a certificate. Does symantec have any procedure to know how to sign the files with the certificate?

    After that, we will create a certificate exclusion in order not to quarantine/delete files.

    Thanks



  • 2.  RE: Software exclusion by Digital certificate (SEPM/SEP)

    Posted Apr 16, 2018 04:39 AM

    simillar question, did you see this?

    This can be done in SEPM 14 RU1, see here:

    http://www.symantec.com/docs/HOWTO127153

    https://www.symantec.com/connect/ideas/software-exclusion-digital-certificate-sepmsep



  • 3.  RE: Software exclusion by Digital certificate (SEPM/SEP)

    Posted Apr 16, 2018 04:52 AM

    Yes, I already checked these link

    What we need to know if there is a procedure provided by Symantec that explains how to sign a file in order to be excuded after that

    Someone have been alredy done it ?

    thanks



  • 4.  RE: Software exclusion by Digital certificate (SEPM/SEP)

    Posted Apr 16, 2018 05:32 AM

    you will be using a cert to sign your files, once that cert is excluded by Symantec endpoint then all the files which are signed by those cert are also excluded.

    https://knowledge.symantec.com/support/code-signing-support/index?page=content&actp=CROSSLINK&id=SO20528



  • 5.  RE: Software exclusion by Digital certificate (SEPM/SEP)

    Posted Apr 16, 2018 07:22 AM

    Are you planning to self-sign or purchase a cert?