So I have a problem trying to add specific items to the exceptions ppolicy from the SONAR logs. If I check the box and choose Allow Application it will not allow me to exclude some because they dont actually provide the file or path. As an example I continuosly receive NetBackup Client Service, NetBackup Device Manager, and NetBackup Volume Manager in the logs as being detected by "Forced SONAR threat detected". How do I work these into a safe list so I don't continue to have these show up in my reports?
One other thing I noticed when successfully adding certain exclusions that the SONAR logs do provide full file path. It looks like they are only being excluded for SEP 11.x clients? Is this true? The majority of my environment is now SEP 12.x so I would like these exclusions to apply to SEP 12 clients also.
Thanks,
Mike