search cancel

LiveUpdate Administrator database Postgresql.exe blocked by App Control

book

Article ID: 243563

calendar_today

Updated On:

Products

Endpoint Security

Issue/Introduction

There is a pop up notification that one or more LiveUpdate Administrator (LUA) processes was blocked from running by App Control when the Symantec Trusted setting is disabled.

Cause

Symantec LUA processes are blocked because Symantec Trusted processes is disabled in the App Control policy and the 3rd party components are not separately whitelisted.

Resolution

Add the following LUA files to your App Control policy allow section.

Publisher: "Oracle America, Inc."

%programfiles%\Symantec\LiveUpdate Administrator\jre\bin*.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\jre\bin*.exe

Add the same list with this prefix:

%programfiles%\Symantec\LiveUpdate Administrator\pgsql\bin\

%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\clusterdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\createdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\createuser.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\dropdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\dropuser.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\ecpg.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\initdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\isolationtester.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\oid2name.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pgbench.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_archivecleanup.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_basebackup.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_config.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_controldata.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_ctl.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_dump.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_dumpall.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_isolation_regress.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_isready.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_receivewal.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_recvlogical.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_regress.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_regress_ecpg.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_resetwal.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_restore.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_rewind.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_standby.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_test_fsync.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_test_timing.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_upgrade.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\pg_waldump.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\postgres.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\psql.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\reindexdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\vacuumdb.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\vacuumlo.exe"
%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\zic.exe"


Publisher: "EnterpriseDB Corporation"

%programfiles(x86)%\Symantec\LiveUpdate Administrator\pgsql\bin\stackbuilder.exe"
%programfiles%\Symantec\LiveUpdate Administrator\pgsql\bin\stackbuilder.exe"

%programfiles%\Symantec\LiveUpdate Administrator\tomcat\bin\luaguid.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\tomcat\bin\luaguid.exe


Publisher "The Apache Software Foundation"

%programfiles%\Symantec\LiveUpdate Administrator\tomcat\bin\tomcat8.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\tomcat\bin\tomcat8.exe

Publisher "The Apache Software Foundation"

%programfiles%\Symantec\LiveUpdate Administrator\tomcat\bin\tomcat8w.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\tomcat\bin\tomcat8w.exe

No Publisher

%programfiles%\Symantec\LiveUpdate Administrator\tomcat\webapps\lua\WEB-INF\classes\com\symantec\lua\support\luaenumprocess.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\tomcat\webapps\lua\WEB-INF\classes\com\symantec\lua\support\luaenumprocess.exe

%programfiles%\Symantec\LiveUpdate Administrator\tomcat\webapps\lua\WEB-INF\classes\com\symantec\lua\support\luaenumservices.exe
%programfiles(x86)%\Symantec\LiveUpdate Administrator\tomcat\webapps\lua\WEB-INF\classes\com\symantec\lua\support\luaenumservices.exe