Kaspersky Endpoint Agent

Enabling and configuring exclusions for sent EDR telemetry about network communications

August 27, 2024

ID 243221

You can configure exclusions for EDR telemetry about network communications using Kaspersky Security Center Web Console, in the properties of an individual device or in the policy settings for a group of devices.

Exceptions for sent EDR telemetry about network communications are applicable when integrating Kaspersky Endpoint Agent with servers on which KATA Central Node or Kaspersky Managed Detection and Response is installed.

Kaspersky Endpoint Agent does not analyze or send data matching exclusion settings to a server with Kaspersky Industrial CyberSecurity for Networks installed.

To enable and configure EDR telemetry about network communications:

  1. Do one of the following:
    • Open the application properties window for an individual device.
    • Open the policy properties window.
  2. In the EDR-telemetry section, select Excluded network communications.

    The Excluded network communications window opens.

  3. In the Exclusions settings group, enable the Use exclusions setting to enable use of EDR telemetry exclusions.
  4. Create a list of exclusions:
    1. Click the Add button.
    2. In the Rule properties window that opens, configure the exclusion settings.
    3. If you need to modify an exclusion, click the Modify button.
    4. If you need to delete an exclusion, select the exclusion and click the Delete button.
  5. If you are configuring the policy settings, make sure that the switch in the upper right corner of the group of settings is turned on. It is the default position of the switch.
  6. Click OK to save the changes.
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.