our antivirus threat prevention policy drop exe files.
we need to create an exception in order to let our microsoft system to download windows update files.
we configured a threat prevention exception rule with destination a domain object .windowsupdate.com. but the updates are still blocked (see attached screenshot log).
any idea how to avoid this block?