Knowledge Base

Access official resources from Carbon Black experts

Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Environment

App Control Server: All Versions
Microsoft Windows: All Supported

Question

What are the recommended AV exclusions for the App Control (Formerly CB Protection) server?

Answer

Exclusions for App Control Server:

C:\Program Files\Bit9\Parity Server\Parityserver.exe
C:\Program Files (x86)\Bit9\Parity Server\Parityserver.exe
C:\Program Files\Bit9\Parity Server\Reporter\Parityreporter.exe
C:\Program Files (x86)\Bit9\Parity Server\Reporter\Parityreporter.exe
C:\Program Files (x86)\Bit9\Parity Server\hostpkg\*

If using External Analytics Export

<Export Directory>\EventTrace-*.bt9
<Export Directory>\MetadataTrace-*.bt9
<Export Directory>\NetTrace-*.bt9

Additional Notes

Some vendors require a trailing asterisks (*) when entering exclusions. Sub-folders should be included on the exclusion. Please refer to the vendors documentation
Windows Defender is enabled by default on Windows machines and also requires these exclusions
External Analytics files have a date stamp in the file name, the above exclusion paths are an example.

Related Content

App Control: Anti-Virus Exclusions for Agent (Windows)
Anti-Virus Exclusions for Cb Protection Agent (Mac and Linux)
Anti-Virus Exclusions for Cb Response Sensor
Anti-Virus Exclusions for Cb Defense Sensor

Article Information

Author:

Creation Date:

‎09-01-2020

Views:

6586