N-Central – AV – BitDefender – Adding AV Exclusions

Last Updated: June 24th, 2020/Published On: April 30th, 2020/By /Views: 1658/

Global Exclusions

SO Level

These can be entered from the SO Level for exclusions that should exist for all clients

Customer/Site Level

These can be entered from the Customer or Site Level for exclusions that should only exist for a specific client or device (such as when you elect to exclude a specific drive letter, or otherwise vulnerable area and other clients shouldn’t have the same settings

Profile Exclusions

These won’t be seen under Global Exclusions – you will need to go under the Profile and select Exclusions to see these

Adding Exclusions

  1. From the appropriate Level, select Configuration> Security Manager > Global Exclusions
  2. Select Tab for what you are trying to add (Process, File/Folder, Network Scan)
  3. Process
    1. Click Add
    2. Type process name – this can be in any of the following formats
      1. C:\Folder Name\File.FileExtension
      2. “C:\Folder Name\File.FileExtension”
      3. *ProcessName.FileExtension
    3. Click Save
  4. File/Folder
    1. Click Add
    2. Select Type (File or Folder)
    3. Type File/Folder or Extension name in any of the following formats
      1. \\ServerName\Folder\
      2. \\ServerName\Folder\File.FileExtension
      3. C:\FolderName\
      4. C:\FolderName
      5. “C:\FolderName\”
      6. C:\FolderName\SubFolder\
      7. %LOCALAPPDATA%\FileMaker\
      8. %LOCALAPPDATA%\FileMaker*
      9. File.FileExtension
    4. Choose proper module – you can leave at ALL if you aren’t sure what to select – not selecting more than what is required is best/most secure method
    5. Click Save
  5. Network Scan
    1. Click Add
    2. Select Type (URL/Application/IP)
    3. Type IPs, URLs or Applications in any of the following formats
      1. *URL.com
      2. *URL.com*
      3. IP Address
      4. www.URL.com
      5. Entire URL (such as: https://la1.www4.irs.gov/eauth/pub/login.jsp)
    4. Click Save

AV Profiles

If necessary you can add (or clone) an AV profile. Please always create these from the SO Level so that we can see that they exist, then you can add items from the Customer/Site level as necessary.

  1. Clone or Create new rule and open it
  2. View each Module and determine if you want it on or to reduce the level of aggressiveness
  3. Recommendations
    1. Don’t automatically scan mapped network drives under Anti-Malware > On-Demand
    2. Change Behavioral Analysis Detection Level before disabling it
    3. You MUST leave Content Control on and installed for other items to work, even if you aren’t controling internet/application or data with it
    4. Make sure under Firewall that you select all profiles and trust them appropriately – if you untrust items like Home/Office, it will put it into Stealth mode by default and they will have troubles connecting at home
    5. Make sure to fill out the technical support information as follows:
    6. Under Settings > Advanced leave Enable Scan Vaccine checked or you will reduce the ability to prevent Crypto-based infections
    7. Set an uninstall password under Settings > Advanced if you don’t want people removing things
    8. Set your Update interval and ensure they can failover to an external update server
  4. You can add exclusions under the profile just like you do above (under Global Exclusions)

*If you need to create a new profile for whatever reason, feel free to reach out to CS for help to ensure all is well

Table of Contents