Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Environment

Cb Defense Web Console: All Versions
Cb Defense Sensor: All 2.x + versions
Microsoft Windows: All Supported Versions
Certificate with Japanese characters in its Common Name (Subject) added to Cert Whitelist

Symptoms

Run Application signed by the Cert with Japanese characters in its Common Name (Subject)
Observe that Sensor does not apply LOCAL_WHITE reputation to files signed by the Cert

Cause

There is a backend issue that is being investigated.

Resolution

To workaround this issue, only utilize Cert Whitelisting for files that are not signed by certificates with Japanese characters in the Common Name.
Alternatively, you can also whitelist files by Hash or create an Allow and Log permissions rule for the file(s). See Cb Defense: Methods to Whitelist Applications

Additional Notes

This article will be updated when a solution for this issue has been identified
Internal Reference: DSEN-3061

Related Content

Cb Defense: Methods to Whitelist Applications

Cb Defense: How to whitelist or blacklist a hash

Cb Defense: How to Utilize Certs Whitelist Feature

Cb Defense: How to Utilize IT Tools Whitelist Feature

Cb Defense: Difference in whitelisting by hash versus Certs or IT Tools

Article Information

Author:

Creation Date:

‎08-07-2018

Views:

631

Contributors

aglasco

esullivan

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.