Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
tom_allen
Contributor

Exclude Powershell Scripts

I have a need to for  a couple of users to be able to run some PowerShell scripts on their PC's. Currently they are getting flagged and the script put in quarantined. Its being flagged as PDM:Trojan.Win32.Generic with the category of riskware. How do I go about setting this up? Thanks!

0 Kudos
4 Replies
PhoneBoy
Admin
Admin

I assume this is an Endpoint AV question.
I don’t think we flag ALL Powershell scripts, or is that what’s happening?
Might be worth a TAC case as it could be a false positive.
0 Kudos
J_B
Collaborator

Could configure the scripts to be excluded from being scanned in the Anti-Malware policy on the management server?

0 Kudos
Michi
Participant

Is there an answer to this situation?

BR Michele 

^ME
0 Kudos
Swordfish
Contributor

If the script gets blocked by the Anti-Malware Blade, this SK helps: sk162553 

If some of the SBA blades are involved:  sk128472

If you want to disable the complete protection itself (I do not recommend it, due to a potential security risk): sk162072 

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events