Configuring the settings for assigning applications to trust groups

If participation in Kaspersky Security Network is enabled, Kaspersky Endpoint Security sends KSN a query about the reputation of an application each time the application is started. Based on the received response, the application may be moved to a trust group that is different from the one specified in the Host Intrusion Prevention component settings.

Kaspersky Endpoint Security always places applications signed by Microsoft certificates or Kaspersky certificates into the Trusted group.

To configure the settings for placement of applications in trust groups:

  1. Open the application settings window.
  2. In the left part of the window, in the Advanced Threat Protection section, select Host Intrusion Prevention.

    In the right part of the window, the settings of the Host Intrusion Prevention component are displayed.

  3. If you want to automatically place digitally signed applications from trusted vendors in the Trusted group, select the Trust applications that have a digital signature check box.

    4. Trusted vendors are those software vendors that are included in the trusted group by Kaspersky. You can also add vendor certificate to the trusted system certificate store manually.

  4. To move all unknown applications to a specified trust group, select the required trust group from the If trust group cannot be defined, automatically move applications to drop-down list.

    For security reasons, the Trusted group is not included in the values of the If trust group cannot be defined, automatically move applications to setting.

  5. To save changes, click the Save button.
Page top