Applies To: WatchGuard Advanced EPDR, WatchGuard EPDR, WatchGuard EDR
Authorized software settings enable you to create an exclusion so that you can run a file that your WatchGuard Endpoint Security product blocks. You can configure settings to authorize the exclusion of software, or a family of software products, before classification takes place. For more information, go to Configure Authorized Software Settings (Windows Computers).
When you create an exclusion, be aware that:
- Authorized software exclusions do not exclude any sub-directories within an excluded directory.
- Authorized software settings support SYSTEM environmental variables (for example, %ProgramFiles%\Test or %ALLUSERSPROFILE%). They do not support USER environmental variables.
Caution: Authorized software settings enable you to approve the execution of executable binary files, excluding script files, standalone .DLLs, and other files. If Endpoint Security blocks a program because it downloads an unknown .DLL, you can authorize the executable file specified in the pop-up message shown on the user computer. After the program is authorized, all .DLL files and resources that it uses are also authorized. This same behavior applies to files that originate from an authorized .MSI installer or self-extracting .EXE file. Processes created by the .MSI or .EXE are also authorized.
If you contact Support for an exclusion issue, use the PSErrorTrace tool to generate a diagnostic file that might help with your case. You can use the PSInfo tool to provide more diagnostic logs to help Support troubleshoot your issue. For more information, go to Get Started with PSInfo.