This article details data control exclusions and the methods to implement them.
Applies to the following Sophos product(s) and version(s)
Sophos Endpoint Security and Control
Data contol - Exclusions
Data control can be configured to exclude the source directory or file. Data control exclusions can be set in two possible ways:
- Via the data control policy
- When editing a data control rule, section 5 permits the exclusion of certain files based upon file name or file type.
- In the Anti-Virus and HIPS policy via the on-access scanning 'Windows Exclusions' tab.
- This is because Data control uses the same set of exclusions as those you configured for on-access scanning. For example, a file in "C:\TEMP" would not be scanned by data control when uploaded to a web browser if that location was also in the Sophos Anti-Virus on-access exclusion list. You may therefore need to verify these exclusions if the Data control exclusions are not working in the way you would expect.