Directly contact our Support Team

Adding Process Exclusions for Mac in Bitdefender GravityZone

As GravityZone administrator, you can configure process exclusions for Mac in the Antimalware and Network Protection sections of the security policy.

Overview

In macOS, the entities listed in the Applications folder are in fact containers that include all binary files, libraries, and dependencies for those apps.

Therefore, when adding antimalware exclusions, you must enter the entire path to the executable file from the application’s container. When adding exclusions in Network Protection, you only need to enter the name of the executable file.

To browse one container and obtain the name of the executable file, right-click that container and select Show Package Contents.

Image: Show Package Contents in macOS

Usually, the path to the executable file is /Application.app/Contents/MacOS/binary, where Application.app is the name of the container and binary is the name of the executable file.

For example, the complete path for the Calendar application in macOS is /Applications/Calendar.app/Contents/MacOS/Calendar

Image: Calendar executable file

note Note:
  • Some applications have different names for the executable files. For example, Visual Studio Code has the executable file with the name Electron. Therefore, the complete path is /Applications/Visual Studio Code.app/Contents/MacOS/Electron

Adding Process Exclusions in Antimalware

To exclude a process from scanning for malware, follow these steps:

  1. Log in to GravityZone Control Center.
  2. Go to the Policies page.
  3. Create or edit a custom policy.
  4. Go to Antimalware and click Settings.
  5. Select the Custom Exclusions check box.
  6. From the menu, select Process as exclusion type.

    Image: Antimalware exclusions

  7. Enter the complete path to the executable file of the application. For example, the complete path for the Time Machine application is /Applications/Time Machine.app/Contents/Time Machine
  8. Select the scanning modules to which the rule applies:
    • On-Access.
    • ATC/IDS.
    • Both On-Access and ATC/IDS modules.
  9. Optionally, click Show remarks to add a note about this exclusion in the Remarks field.
  10. Click the Add button.
  11. Click Save.

To remove a rule from the list, click the corresponding Delete button.

Adding Process Exclusions in Network Protection

To exclude a process from traffic scanning, follow these steps:

  1. Log in to GravityZone Control Center.
  2. Go to the Policies page.
  3. Create or edit a custom policy.
  4. Go to Network Protection > General and select the Global Exclusions check box.
  5. From the menu, select Application as exclusion type.

    Image: Global Exclusions in Network Protection

  6. Enter the name of the executable file of the application to be excluded.

    For example, enter Calendar to exclude the Calendar application, or Electron to exclude the Visual Studio Code application.

    Please note that you do not need to enter a path and the executable file does not have an extension.

  7. Click the Add button.
  8. Click Save.

To remove a rule from the list, click the corresponding Delete button.


Rate this article:

Submit