Endpoint Protection

  • Private Community
 View Only

  • 1.  App-V Client Side Exclusions

    Posted Jul 18, 2012 06:24 PM

    So after reading Microsoft's KB2576031 which suggests excluding the below when running virtualized applications, I have become stumped on how I can create a exclusion in SEPM to address the 2 user profile locations.

     

    · %USERPROFILE%\AppData\Local\SoftGrid Client

    · %USERPROFILE%\AppData\Roaming\SoftGrid Client

    · %PROGRAMDATA%\Microsoft\Application Virtualization Client\SoftGrid Client

     

    To test I have excluded the above paths based on my profile and App-v apps are launching on average 40 seconds faster. Than without the exclusions. the questions is how can I apply an exclusion enterprise wide for any profile that logs into a pc?



  • 2.  RE: App-V Client Side Exclusions

    Posted Jul 18, 2012 08:05 PM

     

    Add any 3 Exclusion from SEPM centralized exception policy and apply to the client group then go to this registry entry on sep client

     HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\Exclusions\ScanningEngines\FileName\Client

    here you will find a numbered folder below client and there you will have ThreatName and FileName
    edit both of them and make it

     

    · %USERPROFILE%\AppData\Local\SoftGrid Client

    · %USERPROFILE%\AppData\Roaming\SoftGrid Client

    · %PROGRAMDATA%\Microsoft\Application Virtualization Client\SoftGrid Client

    close registry
    Open SEP client there you will see the change.

     

    OR 

     

    Create a centralized exception in SEPM-->Windows-->File -->· %USERPROFILE%\AppData\Local\SoftGrid Client-->ok and apply 

     

    Configuring a centralized exception for a file

     http://www.symantec.com/docs/HOWTO18217

     

    Provide the path as full file name if this is a folder then try folder exclusions

     

    · %USERPROFILE%\AppData\Local\SoftGrid Client

    · %USERPROFILE%\AppData\Roaming\SoftGrid Client

    · %PROGRAMDATA%\Microsoft\Application Virtualization Client\SoftGrid Client

     


  • 3.  RE: App-V Client Side Exclusions

    Broadcom Employee
    Posted Jul 19, 2012 02:31 AM

    Hi,

    A file, folder, file extension or application needs to be excluded from being scanned by one or more features of the Symantec Endpoint Protection (SEP) client.
    Such exclusions can be configured for managed SEP clients using Centralized Exceptions policies in the Symantec Endpoint Protection Manager (SEPM) console.

    Centralized Exceptions policies contain exceptions for the following types of scans for Windows-based operating systems:

    • Antivirus and Antispyware scans
    • TruScan Proactive Threat Scans
    • Tamper Protection

    Creating Centralized Exception Policies in Symantec Endpoint Protection Manager

    http://www.symantec.com/docs/TECH104326

    If computers are shared by end users and you wish to apply to all the user profiles then you will have to use user mode.

    Understanding computer and user mode in Symantec Endpoint Protection 11.0

    http://www.symantec.com/docs/TECH102686