You can change the default settings of core prevention policy rules.

Warning: The Alert setting does not protect your endpoints from malicious behavior; it only notifies you of events.

Procedure

  1. On the left navigation pane, click Enforce > Policies.
  2. Select a policy, and click the Prevention tab. Expand Core Prevention.
    Figure 1. Core Preventions
    The core preventions page
  3. Expand the Core Preventions category that you want to change. For example:
    Figure 2. Expanded Core Prevention Category Example
    The expanded advanced scripting prevention category on the core preventions page with the Add Exclusion button
  4. Set the value as your business criteria requires: Alert or Alert and Block.
  5. Click OK to confirm the change.