This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Jan_Bucek
Explorer
‎2018-12-05 12:20 AM

Application whitelist

Hi,

  we are software vendor and we faced with one of our custome false positive detection by CheckPoint Endpoint Security Anti-Malware.

My question is "Is there any way how to whitelist our binaries?" I mean some way how to send our binaries to Check Point for prevent scan and global whitelist to not met this false positive detection in future?

Thank you for any advice

Jan Bucek

3 Replies
G_W_Albrecht
Legend Legend
Legend
‎2018-12-05 01:36 AM

The Endpoint Security Administration Guide R77.30.03 Management Server and sk122577: How to exclude files, folder, processes and infections from Endpoint Security Client Anti-... show how to exclude files / processes from Anti-Malware. You can also provide the binary to TAC so the malware signature is updated worldwide. Another tool is the sk103051 Signature Tool for custom Application Control and URL Filtering applications.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Jan_Bucek
Explorer
‎2018-12-05 02:44 AM
In response to G_W_Albrecht

How to exclude files, folder, processes and infections from Endpoint Security Client Anti-Malware sc... This url lead to article with restricted access "To view this solution, Advanced access is required. "

"You can also provide the binary to TAC so the malware signature is updated worldwide." -> what this exactly means? I dont know what TAC is. 

Thanks

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2018-12-05 04:10 AM
In response to Jan_Bucek

To view this solution, Advanced access is required - you have to contact your support partner / CCSP for the sk. But the Endpoint Security Administration Guide also covers the topic.

TAC is technical assistance - your CCSP opens a support ticket with CP and you then will be able upload the binary.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top