Environment
- CB Protection Server: 7.x and Higher
- CB Protection Agent: 7.x and Higher
- Microsoft WIndows: All Supported Versions
Objective
How can I disable the "File Group Created" events for files?
Resolution
- Navigate to https://yourconsole/agent_config.php
- Click "Add Agent Config"
- Fill out the values as follows:
- Property Name: Your Discretion
- Host ID: <Enter a specific host ID or enter 0 for all hosts>
- Value: no_group=<executable writing the files triggering the event>
- Status: Enabled
- Create For: <Select desired policies>
- Click Save
Additional Notes
- If you wish to enter multiple executables, they must be comma separated.
- Here is the default setting of the no_group value:
no_group=explorer.exe,cmd.exe,winlogon.exe,rundll32.exe,spoolsv.exe,mmc.exe,ccapp.exe,inort.exe,isass.exe,regsvr32.exe,java.exe,javaw.exe,msmpeng.exe
Related Content