Authorized Software Issues
Applies To: WatchGuard Advanced EPDR, WatchGuard EPDR, WatchGuard EDR
Authorized software settings enable you to create an exclusion so that you can run a file that your WatchGuard Endpoint Security product blocks. You can configure settings to authorize the exclusion of software, or a family of software products, before classification takes place. For more information, go to Configure Authorized Software Settings (Windows Computers).
When you create an exclusion, be aware that:
- Authorized software exclusions only apply to .EXE files. However, when you exclude an .EXE file and it runs other files, such as a .DLL file, the exclusion allows the .DLL file to run.
- Authorized software exclusions do not exclude any sub-directories within an excluded directory.
- Authorized software settings support SYSTEM environmental variables (for example, %ProgramFiles%\Test or %ALLUSERSPROFILE%). They do not support USER environmental variables.
If you contact Support for an exclusion issue, use the PSErrorTrace tool to generate a diagnostic file that might help with your case. You can use the PSInfo tool to provide more diagnostic logs to help Support troubleshoot your issue. For more information, go to Get Started with PSInfo.