Event banner

Tech Community Live: AMA – Manage endpoint security in Microsoft Endpoint Manager

Event Ended
Wednesday, Apr 27, 2022, 09:00 AM PDT
Online

Event details

Join us for a special Ask Microsoft Anything (AMA) live stream on endpoint security and configuration! The Microsoft Endpoint Security team is here to answer questions about the latest features and c...
Heather_Poulsen
Updated Dec 27, 2024
AMA
Mike808's avatar
Mike808
Iron Contributor
Apr 27, 2022
Is there a best practice documentation for ASR exclusions. As example I have a block on "AsrLsassCredentialTheftBlocked" initial process file name "C:\Windows\System32\svchost.exe". Should I create an exclusion for this or not? Usually I create only an exclusions if it's really a problem, if something not working anymore because if you create an exclusion it's an exclusions for all ASR rules...
Date and Time
Apr 27, 20229:00 AM - 10:00 AM PDT