Verify if an Endpoint Client has Automatically Excluded an Application or Directory
Last Updated December 11, 2017
How to verify all exceptions on an Endpoint client.
The latest version of the Endpoint Protection client automatically detects the presence of certain installed components/applications, such as Microsoft Exchange and Active Directory Domain Controllers. Where can you manually inspect these exclusions to verify if they need to be added to the Centralized Exceptions policy?
The latest version of Endpoint Protection now automatically adds exclusions that are not visible from the Endpoint Protection Manager.
HOW TO VISUALLY INSPECT EXCLUSIONS
Start > Run > Regedit
Browse to the registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\AV\EXCLUSIONS Note: On 64bit window machines the registry path is: HKEY_LOCAL_MACHINE\Software\WOW6432Node\Symantec\Symantec Endpoint Protection\AV\Exclusions
Expand the key to view the various applications listed there.
The 'File Exceptions' folder is where you can inspect the full list of exclusions associated with that product.
This key is where both automatic and policy added exclusions are stored on the client. Inspecting this key reveals all exclusions applied to the client. If you do not see the exclusion you are trying to add listed in the registry, then it is not being added automatically. You must manually add it to a Centralized Exceptions policy.
Imported Document ID: TECH105814
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe