How to White List GIT Application based on File group in Containment,Antivirus and HIPS

Release Time
02/07/2018
Views
889 times
Category
ITSM Features
Tags


Introduction :

Experience the benefits of ITSM which encounters Exclusion based on File group by adding multiple file path as a Group of GIT Files . User can add as many rules as possible for excluding the application without running inside the containment,HIPS, Antivirus and Firewall.

I) Containment Exclusion:

STEP [1]: Get logged in to ITSM :

  • Go to Setting → System Templates → File group variables
  • Enter a New File group name "GIT FILES" here Note:  Creating a 'File Group' allows you to create ruleset to a  specified files or folders.
  • New group will be added Successfully

STEP [4] : Adding Files in CONTAINMENT to allow security Layer

Go to ITSM → CONFIGURATION TEMPLATES → Profiles

Select PROFILE associated with device . and Choose CONTAINMENT from the drop down

Click on CONFIRM

STEP [5] : In Containment click on "Rules" and Click on Button "Add Rule"

STEP [6] : Now, you can see Pop - up named with Managed Contained program . Drag button "Action" and Select on "Ignore" and press on "Edit"

STEP [6] : Now, you can see Pop - up named with "File Criteria" . Drag button "Type" and Select on "File Groups" and Drag button "Target" and Select on "GIT_FILES"

Click on "OK"

Finally select the rule "GIT_FILES" and click on "Save" button to set the rule .

II) Antivirus Exclusion:

Adding Files in ANTIVIRUS to allow security Layer

Go to ITSM → CONFIGURATION TEMPLATES → Profiles

In profiles select any existing profile or create a new one . Select the profile and Click ADD PROFILE SECTION and Choose ANTIVIRUS from the drop down

Click on CONFIRM

STEP [1] : In ANTIVIRUS go to "Exclusions" → "Exculded groups" and click on "ADD"

STEP [2] : Now, you can see Pop - up named with Add Exculded groups . Drag button "Group" and Select on "GIT_FILES"

Finally ,select the rule "GIT_FILES" and click on "Save" button to set the rule .

III) HIPS Exclusions

STEP [1] : Adding Files in HIPS to allow security Layer

Go to ITSM → CONFIGURATION TEMPLATES → Profiles

In profiles select any existing profile or create a new one . Select the profile and Click ADD PROFILE SECTION and Choose HIPS from the drop down

STEP [2] : In HIPS go to "HIPS Settings" → Detect shellcode injections and Select on "Exclusions"

STEP [3] : Now, you can see Pop - up named with "Exclusions" . Drag button "Add" and Select on "File Groups" and Select on "GIT_FILES"

Click on "Save" Button to update the rule

Finally add the profile to your device .