Allowed applications

Our software may sometimes detect an application as a threat when you know it is safe.

If you have allowed applications in Sophos Central Admin you can't see them in the list of allowed applications in Sophos Central Enterprise.

Any applications that you allow in Sophos Central Enterprise are merged into the list of allowed applications in Sophos Central Admin when you push a template to your sub-estates.

About allowed applications

Our software detects threats that are previously unknown. However, it may sometimes identify an application as a threat, even though you know that it’s safe. When this happens, you can “allow” the application. This does as follows:

  • Prevents this detection from happening again.
  • Restores all copies that have been cleaned up (removed from computers).

Alternatively, you can allow an application in advance, so that it won't be detected when you install it for users. Think carefully before you do this as it reduces your protection.

Allow an application in advance

You can allow an application in advance, so that it won't be detected when you install it for users.

Only allow an application if you know it's safe but think it might be detected as a threat. Think carefully as doing this reduces your protection.

Note that:

  • You can only allow the application by using its path (location).
  • This allows the application to start, but we’ll still check the application for threats, exploits and malicious behavior when it's running.
  1. On the Global Settings page, click Allowed Applications.
  2. Select Add apps by path.
  3. Enter a path. You can use variables if the application is in a different location on different computers.

Edit the path for an allowed application

You can change the path that you specified when you allowed an application.

  1. On the Allowed Applications page, find the application. The current path is shown in the details.
  2. Click the edit icon (the pen) on the far right of the page.
  3. In the Edit path dialog, enter the new path.

When you edit a path, details of the original detection (user, computer and path) are removed from the list.

Start detecting an application again

If you want Sophos to start detecting and removing an application again, you remove it from the Allowed Applications list.

Select the application and click Remove (in the upper right of the page).