EDR Wildcard/Regex Exclusions?
Y'ello all!
Currently running TDR on endpoints, and have several exclusions in place. I've been poking around re-creating the TDR settings with EDR core, and have hit a roadblock - exclusions don't allow wildcards in paths!
We have a few applications (ClickOnce deployed) that we develop in-house that we were able to add to the exclusion list with TDR using some creative wildcards, but apparently can't with EDR. (for those not aware, clickonce applications are installed in C:\Users\\AppData\Local\Apps folder, under a psudo-randomly generated folder name)
Is exclusion wildcards/regex something on the radar to allow in future? In my eye, pure regex is the superior choice, but I'll take what I can get.
Cheers!
-Chris
0
Sign In to comment.
Comments
Hello, Chris_Kelly
At this point you can exclude paths and folders using the instructions on the help url:
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Endpoint-Security/manage-settings/exclude-files-paths-from-scans.html
Those are the rules accepted to exclude any file/path/extension.
If you have any suggestion to send, you can do so from the cog sited at the top right on the online console, and selecting suggestion box.
We are always open, and really appreciate the suggestions sent from our customers, in order to study new changes and improvements on our products.
kind regards,
David
David Carro | Technical support
WatchGuard Technologies, Inc. | www.watchguard.com