G
Guest
I'm using Windows Defender in a corporate environment. Defender is installed
on all of our WinXP SP2 Workstations. We also use another piece of software
for remote administration/helpdesk/etc... called Remote Administrator which
is also installed on those workstations.
Whenever Remote Administrator is started, or when Windows Defender scans,
the user is prompted with a "Windows Defender Warning" dialog box telling the
user to Review harmful or potentially unwanted software, and it lists the
Remote Administrator software as "RemoteAccess:Win32/GhostRadmin" with an
alert level of "Low."
We've instructed users to click Ignore in these instances, but most users
don't read the windows that pop up on their screen. Instead they just click
Remove All to make the warning go away. Of course, the causes the Remote
Administrator software to stop working and makes troubleshooting remote
users' computer issues extremely difficult.
Is there a way to set a policy across the domain to tell Windows Defender to
ignore certain files/directories/processes? I know how to do it on each
individual workstation, but with 200+ laptops and desktops in house, and
another 100 remote, that would take forever. I've also looked into the
WindowsDefender.adm mmc snap-in, but that doesn't allow me to set exceptions.
on all of our WinXP SP2 Workstations. We also use another piece of software
for remote administration/helpdesk/etc... called Remote Administrator which
is also installed on those workstations.
Whenever Remote Administrator is started, or when Windows Defender scans,
the user is prompted with a "Windows Defender Warning" dialog box telling the
user to Review harmful or potentially unwanted software, and it lists the
Remote Administrator software as "RemoteAccess:Win32/GhostRadmin" with an
alert level of "Low."
We've instructed users to click Ignore in these instances, but most users
don't read the windows that pop up on their screen. Instead they just click
Remove All to make the warning go away. Of course, the causes the Remote
Administrator software to stop working and makes troubleshooting remote
users' computer issues extremely difficult.
Is there a way to set a policy across the domain to tell Windows Defender to
ignore certain files/directories/processes? I know how to do it on each
individual workstation, but with 200+ laptops and desktops in house, and
another 100 remote, that would take forever. I've also looked into the
WindowsDefender.adm mmc snap-in, but that doesn't allow me to set exceptions.