14.2 Example: Configuration - McAfee Application Control (Solidifier) ePO

Add Trusted Folder Exclusion for "Log Collector Execution Folder"

1. On the McAfee ePO console, create or modify an Application Control policy or rule group.

2. On the Rule Groups tab, locate your Group Name and under Actions, click Edit.

3. On the Directories tab, click Add.

4. Enter the location of the directory:

   C:\Syskey\Scribbler\logstash-app\temp

5. Select Include.

6. Click OK.

Reference: McAfee Application Control 8.2.0 - Windows Product Guide.

---

Add Folder Exclusion for "Log Storage Folder"

1. On the McAfee ePO console, perform one of these actions:

   • Create an Application Control policy or rule group.
   • Create an Application Control policy (to apply bypass rules to one endpoint).

2. Select the Exclusions tab.

3. Click Add to open the Add exclusion rules dialog box.

4. Expand nodes for the options where you want to add bypass rules:

   • Memory protection
   • Installation detection
   • Advanced options

5. (Optional) Select Advanced options where you want to add bypass rules, then provide the required information:

   • Ignore path for file operations — Specify a relative path in the Relative Path field to ignore the relative path for file operations using the skiplist -i command.
   • Since the data folder path is customizable during the installation, it will be different per environment. Correct data folder path should be provided.
   • \syskey\scribbler\data should match with the data folder.
   • Drive letter is not required.

Reference: For more information, see McAfee Application Control 8.2.0 - Windows Product Guide.