documentation.HELP! Sophos Endpoint Security and Control Documentation

Authorize suspicious items

Sophos Endpoint Security and Control

previous page next page

Authorize suspicious items

Important: If a management console is used to administer Sophos Endpoint Security and Control on this computer, it may override any changes you make here.

If you want to allow an item that Sophos Anti-Virus has classified as suspicious, you can authorize it as follows.

1. Click Home > Anti-virus and HIPS > Configure anti-virus and HIPS > Configure > Authorization.
2. Click the tab for the type of item that has been detected (for example, Buffer overflow).
3. In the Known list, select the suspicious item.
4. Click Add.

The suspicious item appears in the Authorized list.

Note: You can also authorize suspicious items in Quarantine manager. For information on how to do this, see the following topics:

• Deal with suspicious files in quarantine
• Deal with suspicious behavior in quarantine

previous page start next page

Get in touch

Submit feedback about this site to:

• [email protected]