Is it possible to whitelist specific software, such as MS Powershell as an example, in the Ransomware module in TMS?
I searched for the option in the TMS, on google and here in the live community, but haven't found anything. Is this possible?
Thanks and regards
Solved! Go to Solution.
You can actually whitelist a specific application from the Anti-Ransomware module in Traps in the Exceptions page in TMS
Once you login to the TMS console
- go to Exceptions -> Process Exceptions
- click on Actions button on the upper right area of the page and select Create Process Exceptions
- enter the Process name, in your example, powershell.exe
- select the Platform Windows
- under Module, select Anti-Ransomware
- click on Create
Once created, edit the exception to add your target agents/groups you want this exception to be applied to.
Let me know if this helps.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!