Advanced exclusion filter (AEF) rules aren't filtering Application and Change Control observations
Last Modified: 2024-01-15 12:50:07 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Advanced exclusion filter (AEF) rules aren't filtering Application and Change Control observations
Technical Articles ID:
KB94950
Last Modified: 2024-01-15 12:50:07 Etc/GMT Environment
Application and Change Control (ACC) 8.x, 7.x, 6.x Windows Problem
Advanced exclusion filter (AEF) rules aren't filtering ACC observations.
Solution
In the Solidcore Rule Group, where you've added AEF rules, make sure that the Apply rules to filter observations on endpoints running version 6.1.1 or earlier option is disabled for AEF rules to filter observations.
Affected ProductsLanguages:This article is available in the following languages: |
|