Capture Client Interoperability with Third Party Applications

This guide helps ensure Capture Client works smoothly with the listed applications.  For specific instructions on each application, refer to the dedicated guides (linked below). These guides will provide the necessary details to configure your system for optimal compatibility.

While these instructions improve compatibility with certain applications, it's important to understand that the Agent will no longer be able to scan for and block threats that exploit vulnerabilities within those excluded applications.

• Interoperability with AutoCAD
• Interoperability with AdBackup
• Interoperability with BitDefender
• Interoperability with CiscoAMP
• Interoperability with Citrix
• Interoperability with Commvault Backup and Recovery
• Interoperability with CorelDRAW
• Interoperability with CrashPlan
• Interoperability with Cybereason
• Interoperability with CyberArk
• Interoperability with Cylance
• Interoperability with Digital Guardian DLP
• Interoperability with Dell CMG (Data Protection and Encryption)
  
• Interoperability with Docker
  
• Interoperability with DWG TrueView
  
• Interoperability with ESET (NOD32)
  
• Interoperability with FileMaker Pro
• Interoperability with Ivanti (LANDESK)
• Interoperability with McAfee
  
• Interoperability with Microsoft Domain Controllers (DC)
• Interoperability with Microsoft Exchange Servers
• Interoperability with Microsoft SCOM (System Center Operations Manager)
• Interoperability with Microsoft SQL Servers
• Interoperability with Nuance EditScript
• Interoperability with Oracle 
  
• Interoperability with Qualys
  
• Interoperability with SafeBreach
  
• Interoperability with Tanium Threat Response
• Interoperability with SAP
• Interoperability with Sophos
  
• Interoperability with Symantec Antivirus
  
• Interoperability with Trend Micro
• Interoperability with Veeam
  
• Interoperability with Veritas Backup Exec (Symantec Backup Exec)
  
• Interoperability with VirtualBox for macOS
  

For best performance, limit exclusions to the smallest group of devices that actually need them. Avoid making exclusions to the default settings for all devices. Instead, create a specific group for devices that use the application you need to exclude, and then set the exclusion for that group.

Capture client lets you exclude variants that could be false positives or causing issues with legitimate downloads.

There are five different ways you can create exclusions on the Capture Client console and apply it across the entire tenant network.

1. Hashes: You can exclude the SHA 1 hashes of the files. MD5 and SHA 256 hashes are not accepted while creating an exclusion.
2. Paths: you can exclude the path of file that could be excluded.
3. Signer Identity: You can exclude a particular certificate if the certificate turns out to be a false positive and is blocked as a Threat under Capture client.  Add the certificate ID and appropriate OS to create the exclusion.
4. File types: lets you exclude any file types eg:exe, pdf ( Available only for Windows OS for now).
5. Browsers: lets you exclude the entire browser ( Available only for Windows OS for now).

You can have Global/Tenant level exclusions or Per Policy based Exclusions:

To Create Global/Tenant Level Exclusions:

• Log into https://captureclient.sonicwall.com/ with your MySonicWall credentials.
• Navigate to Configuration| Exclusions.

Click Add on the right. A window will open to Add the exclusion.

For file based exclusions select:

• Type: Path
• As: File
• Exclusion Mode: Performance Focus - Extended

For folder based exclusions select:

• Type: Path
• As: Folder and Subfolder
• Exclusion Mode: Performance Focus - Extended

To Create Per Policy based Exclusions:

• Log into https://captureclient.sonicwall.com/ with your MySonicWall credentials.
• Navigate to Security Policies>Threat Protection

For file based exclusions select:

• Type: Path
• As: File
• Exclusion Mode: Performance Focus - Extended

For folder based exclusions select:

• Type: Path
• As: Folder and Subfolder
• Exclusion Mode: Performance Focus - Extended

Note: Global/Tenant Level Exclusions will be pushed to all endpoints under the tenant, Per policy based Exclusions will only be applied to the Endpoints associated with that policy

Learn more about Best Practices for Create Path-based Exclusions.