https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37603#M3582 <HTML><HEAD></HEAD><BODY><P>Hi team,</P><P></P><P>I think the granularity of our console is good but at the same time, it can be a bit confuse where should we configure an exception as there are multiple places to configure. Regarding just SBA blades there are up to 3 places where we can configure exceptions:</P><P></P><P style="padding-left: 30px;">-&nbsp;<STRONG>SBA Forensics, Remediation and Anti-Ransomware</STRONG>. There could be exceptions for Certificates, Files, Folders, MD5 Hashes, SHA1 Hashes and File Extensions.</P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">- <STRONG>SBA Anti-Bot</STRONG>. There could be exceptions for Processes, URLs, Domains, Protection Names, IP Ranges.</P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">- <STRONG>SBA TE and TX</STRONG>. There could be exceptions for Folders, Domains and SHA1.</P><P style="padding-left: 30px;"></P><P></P><P>If we add Anti-Malware blade, we could also make exceptions for Files, Folders and Extensions.</P><P></P><P>I think we could simplify this in some ways, couldn't we?&nbsp;<img id="smileyhappy" class="emoticon emoticon-smileyhappy" src="https://community.checkpoint.com/i/smilies/16x16_smiley-happy.png" alt="Smiley Happy" title="Smiley Happy" /></P></BODY></HTML> Sun, 08 Apr 2018 20:41:51 GMT Jesús_Toledano 2018-04-08T20:41:51Z https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37603#M3582 <HTML><HEAD></HEAD><BODY><P>Hi team,</P><P></P><P>I think the granularity of our console is good but at the same time, it can be a bit confuse where should we configure an exception as there are multiple places to configure. Regarding just SBA blades there are up to 3 places where we can configure exceptions:</P><P></P><P style="padding-left: 30px;">-&nbsp;<STRONG>SBA Forensics, Remediation and Anti-Ransomware</STRONG>. There could be exceptions for Certificates, Files, Folders, MD5 Hashes, SHA1 Hashes and File Extensions.</P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">- <STRONG>SBA Anti-Bot</STRONG>. There could be exceptions for Processes, URLs, Domains, Protection Names, IP Ranges.</P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">- <STRONG>SBA TE and TX</STRONG>. There could be exceptions for Folders, Domains and SHA1.</P><P style="padding-left: 30px;"></P><P></P><P>If we add Anti-Malware blade, we could also make exceptions for Files, Folders and Extensions.</P><P></P><P>I think we could simplify this in some ways, couldn't we?&nbsp;<img id="smileyhappy" class="emoticon emoticon-smileyhappy" src="https://community.checkpoint.com/i/smilies/16x16_smiley-happy.png" alt="Smiley Happy" title="Smiley Happy" /></P></BODY></HTML> Sun, 08 Apr 2018 20:41:51 GMT https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37603#M3582 Jesús_Toledano 2018-04-08T20:41:51Z https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37604#M3583 <HTML><HEAD></HEAD><BODY><P>I like this idea as when trying to make exceptions for company applications that are getting flagged, it gets tedious trying to go through each blade and making the same exception.&nbsp; I would like to see an option to make an exception that applies to all of the Sandblast Blades, but I would keep Anti-Malware separate as I would still like to have some sort of protection for the exception items in Sandblast just to be safe.&nbsp;&nbsp;</P></BODY></HTML> Tue, 24 Apr 2018 14:02:01 GMT https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37604#M3583 Steve_Lander 2018-04-24T14:02:01Z https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37605#M3584 <HTML><HEAD></HEAD><BODY><P>The power of granularity some times creates management issues, however each blade is a different product with different purpose under one application.&nbsp;</P><P></P><P>Thanks,</P><P></P><P>Charris Lappas</P></BODY></HTML> Thu, 24 May 2018 04:26:13 GMT https://community.checkpoint.com/t5/Endpoint/Global-Policy-Exceptions/m-p/37605#M3584 Charris_Lappas 2018-05-24T04:26:13Z