Pre-authorize suspicious items

If you want to allow an item that Sophos Endpoint Security and Control has not yet classified as suspicious, you can pre-authorize it.

To pre-authorize a suspicious item:

  1. Click Home > Anti-virus and HIPS > Configure anti-virus and HIPS > Configure > Authorization.
  2. Click the tab for the type of item that has been detected (for example, Buffer overflow).
  3. Click New entry.
  4. Locate the suspicious item, and then double-click it.
The suspicious item appears in the Authorized list.