Knowledge Center

Creating a large number of on-access scan exclusions in ePolicy Orchestrator results in an unenforced Endpoint Security Threat Prevention policy
Technical Articles ID:   KB88866
Last Modified:  2/14/2019


McAfee Endpoint Security (ENS) Threat Prevention 10.5.0


In the ePolicy Orchestrator (ePO) console, you entered on-access scan exclusions in low risk and high risk processes. When the total number of characters in the path for the exclusions, plus the internal separators, exceeds 5000, the policy does not enforce on the end node.


The policy exceeds the character limit for exclusions.


The character limit for exclusions in ENS 10.5.1 has been increased to keep this issue from occurring. The maximum string size of each process name is limited to 260 characters. The total size for all processes is limited to 16,384 (16 times 1024).

This issue is resolved in Endpoint Security 10.5.1, which is available from the Product Downloads site at: http://mcafee.com/us/downloads/downloads.aspx.

NOTE: You need a valid Grant Number for access. KB56057 provides additional information about the Product Downloads site, and alternate locations for some products.

Updates are cumulative; Technical Support recommends that you install the latest one.

Rate this document


This article is available in the following languages:

English United States

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.