Symantec Endpoint Protection Tamper Protection alert on C:/Program Files/Manufacturer/Endpoint Agent/edpa.exe

book

Article ID: 178027

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

Why is Tamper Protection generating alerts specific to edpa.exe?

 


 

SEP Tamper Protection generates alerts pointing to C:/Program Files/Manufacturer/Endpoint Agent/edpa.exe.

Cause

The Vontu Data Loss Prevention (DLP) program attempts to read SEP code as part of its data loss prevention function.

Resolution

Create a Tamper Protection exclusion for this process and, per DLP support, for the wdp.exe process.

 


Technical Information
Edpa.exe is a process used by the Vontu Data Loss Prevention product. The default install path is C:/Program Files/Manufacturer/Endpoint Agent/ folder.