cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
User21768621
Level 7
Report Inappropriate Content
Message 1 of 3
‎04-07-2021 11:32 PM

Stop McAfee Solidifer preventing unauthorized execution error reporting in Windows event log

Hi, We have 4 x stations with McAfee Application Control 8.2.1.143 standalone installed on them. McAfee Application Control is currently blocking Windows Compatibility Telemetry (CompatTelRunner.exe), which is what we want however its reporting this error hundreds of time a day in the Windows Application Log. I wondered if there was a policy that could be created to stop this specific error relating to CompatTelRunning.exe reporting in the windows application log? Please note, I do not want to stop all "unauthorized execution" errors reporting, only the errors related to CompatTelRunning.exe. Any help would be appreciated. I have some pictures of the error I wish to stop reporting in the application log for your reference if there is a way to attach to ticket. Thanks Toni
1 person had this problem.
0 Kudos
Reply
2 Replies
AdithyanT
Employee
Employee
Report Inappropriate Content
Message 2 of 3
‎04-08-2021 12:55 AM

Re: Stop McAfee Solidifer preventing unauthorized execution error reporting in Windows event log

Hi @User21768621,

Thank you for your detailed description of the issue. We can indeed allow execution of specific executables without having to allow all unauthorized executions. We need to gain more information on the Event generated (Description). This will tell us what feature is blocking the execution and how we can go about resolving the same.

I would recommend opening a Service Request for the same, however, if you can help me with a screenshot of the event under Application Control events on client side or Solidcore Events page in ePO, I may e able to come up with an exclusions method for you to allow the process execution.

Was my reply helpful?
If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Thanks and regards,
Adithyan T
0 Kudos
Reply
Kenchee_etf
Employee
Employee
Report Inappropriate Content
Message 3 of 3
‎04-09-2021 05:27 AM

Re: Stop McAfee Solidifer preventing unauthorized execution error reporting in Windows event log

Hello @User21768621 

If I understood correctly, you want the block, but you don't want event about the block to be created, correct?

If that is the case you may use MACC feature called Advance Event Filtering aka AEF and that can be configured in MACC policy to tell the client, if you make this block, don't bother me with it aka continue blocking, but don't send events.

*** McAfee Application Control 8.0.0 Interface Reference Guide (McAfee ePolicy Orchestrator) - Filters tab
https://docs.mcafee.com/bundle/application-control-8.0.0-interface-reference-guide-epolicy-orchestra...

I hope this helps.

Was my reply helpful?

If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?
0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC