https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75032#M2016 I assume this is an Endpoint AV question.<BR />I don’t think we flag ALL Powershell scripts, or is that what’s happening?<BR />Might be worth a TAC case as it could be a false positive. Wed, 12 Feb 2020 20:52:51 GMT PhoneBoy 2020-02-12T20:52:51Z https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75031#M2015 <P>I have a need to for&nbsp; a couple of users to be able to run some PowerShell scripts on their PC's. Currently they are getting flagged and the script put in quarantined. Its being flagged as PDM:Trojan.Win32.Generic with the category of riskware. How do I go about setting this up? Thanks!</P> Wed, 12 Feb 2020 20:32:56 GMT https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75031#M2015 tom_allen 2020-02-12T20:32:56Z https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75032#M2016 I assume this is an Endpoint AV question.<BR />I don’t think we flag ALL Powershell scripts, or is that what’s happening?<BR />Might be worth a TAC case as it could be a false positive. Wed, 12 Feb 2020 20:52:51 GMT https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75032#M2016 PhoneBoy 2020-02-12T20:52:51Z https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75081#M2020 <P>Could configure the scripts to be excluded from being scanned in the Anti-Malware policy on the management server?</P> Thu, 13 Feb 2020 10:52:41 GMT https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/75081#M2020 J_B 2020-02-13T10:52:41Z https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/131018#M4728 <P>Is there an answer to this situation?</P><P>BR Michele&nbsp;</P> Tue, 05 Oct 2021 11:23:27 GMT https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/131018#M4728 Michi 2021-10-05T11:23:27Z https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/131026#M4729 <P>If the script gets blocked by the Anti-Malware Blade, this SK helps: <A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk162553&amp;partition=Basic&amp;product=Endpoint#Understanding%20Anti-Malware%20exclusions" target="_self">sk162553</A>&nbsp;</P><P>If some of the SBA blades are involved:&nbsp; <A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk128472" target="_self">sk128472</A></P><P>If you want to disable the complete protection itself (I do not recommend it, due to a potential security risk): <A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk162072" target="_self">sk162072</A>&nbsp;</P><P>&nbsp;</P> Tue, 05 Oct 2021 12:30:17 GMT https://community.checkpoint.com/t5/Endpoint/Exclude-Powershell-Scripts/m-p/131026#M4729 Swordfish 2021-10-05T12:30:17Z