https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440526#M6270 <P>UMontero, you indicate that it should be done by a TAC engineer. Does that mean it can be done by mere mortals?</P> Wed, 28 Jul 2021 17:02:50 GMT Brad.Shaw 2021-07-28T17:02:50Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4262596#M5892 <P>Hello guys,</P><P>Do you know if it is possible to exclude a file from Exploit Prevention engine? I havent found anything like that in the AMP console.&nbsp; If this is not possible, is it on the roadmap?</P><P>Thanks&nbsp;</P><P>Marcel</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 22 Dec 2020 19:36:38 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4262596#M5892 jmarcel2 2020-12-22T19:36:38Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4262626#M5893 <P>Hello,</P> <P>&nbsp;</P> <P>It is possible, although it should be done by a TAC engineer.</P> <P>Otherwise, we have the option of putting Exploit Prevention in Audit or Disabled.</P> <P>&nbsp;</P> <P>Regards,</P> Tue, 22 Dec 2020 20:50:54 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4262626#M5893 UMontero 2020-12-22T20:50:54Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4273955#M5933 <P><SPAN class="TextRun BCX0 SCXP153943775" data-contrast="none"><SPAN class="NormalTextRun BCX0 SCXP153943775">Good engagement, Marcel.</SPAN></SPAN><SPAN class="TextRun BCX0 SCXP153943775" data-contrast="none"><SPAN class="NormalTextRun BCX0 SCXP153943775">&nbsp;Message received ✉. Malo McWare was here but he jumped off a minute ago.&nbsp;Meet me back at HQs. I know where he's going.&nbsp;</SPAN></SPAN><SPAN class="TextRun BCX0 SCXP153943775" data-contrast="none"><SPAN class="NormalTextRun BCX0 SCXP153943775">(Disclaimer: this post is part of the AMP for Endpoints Advocacy Campaign on the Cisco Gateway)</SPAN></SPAN></P> Sun, 17 Jan 2021 09:42:36 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4273955#M5933 Mariley Reinoso Olivera 2021-01-17T09:42:36Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440526#M6270 <P>UMontero, you indicate that it should be done by a TAC engineer. Does that mean it can be done by mere mortals?</P> Wed, 28 Jul 2021 17:02:50 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440526#M6270 Brad.Shaw 2021-07-28T17:02:50Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440592#M6274 So are you asking if TAC engineers are mortals, or are you asking if there is actually a way for end users to do it?<BR />At this point, it is still done in the back-end of your AMP tenant…<BR /><BR /> Wed, 28 Jul 2021 19:18:30 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440592#M6274 Ken Stieers 2021-07-28T19:18:30Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440630#M6276 <P>That answers the questions Ken. Actually I guess it answers two, the ethereal status of the TAC engineers, and my ability to do it myself. <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> Wed, 28 Jul 2021 20:09:33 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440630#M6276 Brad.Shaw 2021-07-28T20:09:33Z https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440968#M6277 <P>Hello all,<BR />we are constantly adding features and improvements to the Secure Endpoint product and the SecureX architecture. Custom Exploit Prevention exclusions are not possible today. There are a lot of Feature Requests or wishes for different areas of the product/architecture. FRs are helping us to change the priority for new upcoming product features and improvements. If you want, i can open a FR for you in the tool. To do so, you may send me a PM including the following information.</P> <UL> <LI>Company Name</LI> <LI>Connector Deployment count</LI> <LI>Ares (APJC, EMEAR, NAM)</LI> </UL> <P>I will send you back the FR number, so you can go in contact with with Cisco representative.</P> <P>Greetings,<BR />Thorsten</P> Thu, 29 Jul 2021 09:35:29 GMT https://community.cisco.com/t5/endpoint-security/exploit-prevention-exclusions/m-p/4440968#M6277 Troja007 2021-07-29T09:35:29Z