Jump to content

Compatibility With GTB DLP Agent


Ali Hatamlej

Recommended Posts

Ali Hatamlej

Dears 

we are install GTB DLP Agent on Machine Kaspersky is installed on it , please could you tell me what exact should be wight list on kasbersky 

Link to comment
Share on other sites

  • 2 weeks later...
On 9/26/2024 at 2:24 AM, Ali Hatamlej said:

Dears 

we are install GTB DLP Agent on Machine Kaspersky is installed on it , please could you tell me what exact should be wight list on kasbersky 

Hello @Ali Hatamlej Welcome i think you mean White List?

Nevertheless lets give it a go.

To successfully install and operate the GTB DLP Agent on a computer running Kaspersky Endpoint Security v12.6, you need to configure Kaspersky to whitelist specific components of the DLP agent.

This ensures that Kaspersky does not interfere with the DLP agent’s functionality. Below is a step-by-step guide to help you achieve this:


1. Identify GTB DLP Agent Components

Before configuring Kaspersky, it's essential to identify all the components of the GTB DLP Agent that need to be whitelisted. These typically include:

  • Executable Files: The main executable and any related helper applications.

    • Examples: gtbdlp.exe, gtbdlp_service.exe (Replace with actual filenames if different.)
  • Services: Windows services related to the DLP agent.

    • Examples: GTB DLP Service
  • Installation Directories: Folders where the DLP agent is installed.

    • Example: C:\Program Files\GTB DLP\
  • Network Ports: Specific ports used by the DLP agent for communication.

    • Example: Port 8080 (Replace with actual ports if different.)

Note: If you're unsure about the exact filenames, services, or ports, consult the GTB DLP Agent's official documentation or contact their support team.


2. Configure Kaspersky Endpoint Security v12.6

a. Access the Kaspersky Management Console

  1. Open the Kaspersky Endpoint Security Management Console:

    • This is typically accessible via your network's management server or directly on the machine where Kaspersky is installed.
  2. Log In:

    • Ensure you have administrative privileges to make policy changes.

b. Navigate to the Policy Settings

  1. Go to the "Policies" Section:

    • This section allows you to create and modify security policies for different groups or individual machines.
  2. Select the Appropriate Policy:

    • Choose the policy that is applied to the computer where you're installing the GTB DLP Agent.

c. Add Application Exclusions

  1. Access "Threats and Exclusions":

    • Within the selected policy, navigate to Protection > Threats and Exclusions.
  2. Configure Exclusions:

    • Add File/Folder Exclusions:

      • Path Exclusions:
        • Add the installation directory of the GTB DLP Agent (e.g., C:\Program Files\GTB DLP\).
      • File Exclusions:
        • Add specific executable files (e.g., C:\Program Files\GTB DLP\gtbdlp.exe).
    • Process Exclusions:

      • If the DLP agent runs specific processes, add them by their executable names (e.g., gtbdlp_service.exe).
  3. Exclude Network Ports (If Applicable):

    • If the DLP agent communicates over specific ports, ensure these ports are allowed through Kaspersky’s firewall.
      • Navigate to Network Protection > Firewall Rules.
      • Create a New Rule:
        • Allow inbound and outbound traffic on the required ports (e.g., TCP/UDP port 8080).

d. Adjust Application Control Settings

  1. Navigate to "Application Control":

    • Within the policy, go to Application Control or Application Rules.
  2. Whitelist the DLP Agent Applications:

    • Add the DLP agent’s executables to the whitelist.
      • You can whitelist by File Path, Hash, or Digital Signature for enhanced security.

e. Save and Apply the Policy

  1. Save Changes:

    • After adding all necessary exclusions and rules, save the policy.
  2. Deploy the Policy:

    • Ensure the updated policy is pushed to the target computer.
    • This might require a policy refresh or a restart of the Kaspersky service on the client machine.

3. Verify the Configuration

After configuring the exclusions, perform the following checks to ensure everything is set up correctly:

  1. Install the GTB DLP Agent:

    • Proceed with the installation on the target computer.
  2. Monitor Kaspersky Logs:

    • Check Kaspersky’s logs to ensure that it is not blocking any components of the DLP agent.
      • Look for any denied actions related to the DLP agent’s executables or services.
  3. Test DLP Functionality:

    • Ensure that the DLP agent is functioning as expected.
    • Verify that data loss prevention policies are being enforced without interference from Kaspersky.

4. Additional Recommendations

  • Consult Official Documentation:

    • Always refer to the official GTB DLP Agent documentation for any specific requirements or recommendations regarding antivirus exclusions.
  • Least Privilege Principle:

    • Only whitelist the necessary components to minimize potential security risks.
  • Regular Updates:

    • Ensure both Kaspersky and the GTB DLP Agent are kept up to date to benefit from the latest security features and compatibility improvements.
  • Contact Support:

    • If you encounter issues or need further assistance, consider reaching out to Kaspersky or GTB support teams for specialized help.

By carefully following these steps, you should be able to configure Kaspersky Endpoint Security v12.6 to accommodate the GTB DLP Agent, ensuring both security solutions operate harmoniously on your system.

Thank you

Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...