Wildcards defined within the process name for High and Low Risk applications aren't honored
Last Modified: 2023-08-07 10:43:42 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Wildcards defined within the process name for High and Low Risk applications aren't honored
Technical Articles ID:
KB95120
Last Modified: 2023-08-07 10:43:42 Etc/GMT Environment
Endpoint Security (ENS) Threat Prevention 10.x
Problem
When entering a low-risk or high-risk process, wildcard usage (* and **) is allowed and works for paths to a process name, but not for the process name itself. Examples:
SolutionTechnical Support is investigating this issue. As a temporary measure, implement the following workaround.
To receive email notification when this article is updated, click Subscribe on the right side of the page. You must be logged on to subscribe.
Workaround
Don't use a wildcard (*) in the process name. You can use wildcards (* and **) in the path to the process.
Affected ProductsLanguages:This article is available in the following languages: |
|