Authorize suspicious items

Note If a management console is used to administer Sophos Endpoint Security and Control on this computer, it may override any changes you make here.

If you want to allow an item that Sophos Anti-Virus has classified as suspicious, you can authorize it as follows.

  1. Click Home > Anti-virus and HIPS > Configure anti-virus and HIPS > Configure > Authorization.
  2. Click the tab for the type of item that has been detected (for example, Buffer overflow).
  3. In the Known list, select the suspicious item.
  4. Click Add.
The suspicious item appears in the Authorized list.
Note You can also authorize suspicious items in Quarantine manager. For information on how to do this, see the following topics: