Hello everyone!
I'm in need to exclude a certain directory present on each client of my network from being scanned by each Kaspersky Workstation client. Having a network of more than 50 clients, i'd like to take advantage of Kaspersky Administration Kit policies.
So, i proceeded this way:
new policy
Settings
In the dropdown menu "Protection"
Trusted zone
Exclusions
At this point i added this path: "%ProgramFiles%\program_directory\*.*", selecting all tasks.
Then the policy has been applied.
Sadly, no client is obtaining this setting, although the policy shows as "correctly applied". I guarantee that the policy is working since any modification to other settings is immediately visible.
This is my configuration:
Kav Admin kit 6.0
Kav Workstation v6.0
Thanks for help!
Full Version: Apply local exclusion via Policy
Hello,
Try to lock (see: http://support.kaspersky.com/faq/?qid=208279068) "trusted zone" option in your policy, it will ensure you that settings are applied on client side.
Try to lock (see: http://support.kaspersky.com/faq/?qid=208279068) "trusted zone" option in your policy, it will ensure you that settings are applied on client side.
Tybilly is right.
You probably had your enforcement set not to modify local settings.
- Open your policy.
- Go to Settings
- Pull down protection.
- Lock Trusted zones with the little lock icon.
- Click on the enforcement tab.
- Click on advanced near the bottom.
- Select the thrid option to apply all policy settings.
- Click Change now
- Click OK.
You probably had your enforcement set not to modify local settings.
Thank you guys, your solution worked! 
Have a nice day!
Have a nice day!
QUOTE(spidernik84 @ 11.12.2008 10:30) 
Thank you guys, your solution worked!
Have a nice day!
Have a nice day!
Yes it works, but thet is a very silly way to implement it this way.
I want to apply exlusions to servers, but I do not want to lock the settings (as I might want to change them on some servers)
Now instead doing it once as policy I have to do it on each separate server
What is even worse that when such locked policy is applied & then unlocked all the settings simply are GONE
Seb
QUOTE(spgsitsupport @ 11.12.2008 12:11)
Yes it works, but thet is a very silly way to implement it this way.
I want to apply exlusions to servers, but I do not want to lock the settings (as I might want to change them on some servers)
Now instead doing it once as policy I have to do it on each separate server
What is even worse that when such locked policy is applied & then unlocked all the settings simply are GONE
Seb
I want to apply exlusions to servers, but I do not want to lock the settings (as I might want to change them on some servers)
Now instead doing it once as policy I have to do it on each separate server
What is even worse that when such locked policy is applied & then unlocked all the settings simply are GONE
Seb
I second that. Although it's a "working" solution, especially in my case, it's generally limiting flexibility quite much. What if a user wants to add some kind of special exclusion on his client? Does he need to pick up the phone and call the kav admin to add it for him?
What i'm wondering is: why is there a need to force the policy to make it get applied?
spgsitsupport: This is a weakness in the admin kit, but if you post these recommendations in the AK 8.0 Beta forums or Product Suggestions, maybe they can be implemented in the 8.0 release. Just fyi.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.