This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

The Community is now in read-only mode to prepare for the launch of the new Flexera Community. During this time, you will be unable to register, log in, or access customer resources. Click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

FlexNet Manager Suite Agent is triggering Windows Defender: Controlled Folder Access

Summary

We have enabled Controlled Folder Access (CFA) and now Windows Defender is telling us that the agent is trying to modify files. Why is this?

Symptoms

We have enabled Controlled Folder Access (CFA) and now Windows Defender is telling us that the agent is trying to modify files. Why is this?

Cause

As per Microsoft:
Controlled Folder Access in Windows Security reviews the apps that can make changes to files in protected folders. Occasionally, an app that is safe to use will be identified as harmful.

This is a false detection caused by the new CFA feature found in recent versions of Windows Defender (Windows 10 and Windows Server 2016). As the FNMS agent must run on multiple versions of Windows where CFA may or may not be present, the method in how the agent requests access and scans a machine could be seen as malicious activity by such a feature.


Steps To Reproduce


Resolution

Add the agent to the list of CFA exclusions or turn off CFA. The instructions to perform this are available via the Microsoft link in the Additional Inforrmation section of this KB.

Workaround


Additional Information


Related Documents


Related KB Articles

‎Feb 23, 2019 12:03 AM

Labels:
No ratings
0 Kudos
Version history
Last update:
‎Feb 23, 2019 12:03 AM
Updated by: