We migrated ticketing systems!

If you would like to check on the status of a ticket, please visit huntress.zendesk.com.

For the time being, our documentation will stay the same, we will make a hard cutover when all the documentation is ready. The Huntress Support site will continue to be support.huntress.io, it will just come with a new look and feel.

Click here to check the status of a ticket



Top

Managed AV (Beta) - Exclusions

Related Articles

Creating Microsoft Defender AV Exclusions

There is a bug in the Huntress system that requires exclusions' letter-case in Huntress and locally on the machine to match. Otherwise, Huntress will show "non-compliant" (but the exclusions will still be applied).

    Exclusions can be set on the account, organization, or host level (depending on inheritance settings).

    To set exclusions for a host you'll want to click the "gear" icon under the Microsoft Defender box within an Agent, and you will be presented with a place to create exclusions:

    To create exclusions on the account or organization level, click on "Configure" within the Managed Antivirus Status table on the Managed AV page of the Account or organization. After selecting inheritance settings (if available) you will be able to enter the exclusions.

    • Path exclusions - type out the path you want to exclude (i.e., C:\ProgramName\Databasefolder) 
    • Extension exclusions - type the extension name of extensions you'd like to exclude from scanning (ie. .txt, .docx, etc. <-- don't exclude these)
    • Process exclusions - type the full path of programs you'd like to exclude (i.e., C:\tester.exe)

    For more information on Path/Extension exclusions, please see https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.