Windows 10 controlled folder access (ransomware protection)

[solution719]

Hi,

I'am trying to configure the new Windows 10 feature "Controlled folder access" to prevent possible ransomware from encrypting Veeam backups on my external HD drive.
https://docs.microsoft.com/en-us/window ... loit-guard

quote:

"By default, Windows adds apps that it considers friendly to the allowed list - apps added automatically by Windows are not recorded in the list shown in the Windows Defender Security Center app or by using the associated PowerShell cmdlets. You shouldn't need to add most apps. Only add apps if they are being blocked and you can verify their trustworthiness."

With this feature enabled my Veeam backup task fails, so I think Veeam isn't automatically added to the allowed list. So the question is: Which Veeam executables and/or services must been added to the allowed list? So far I've already added the following ones (but without success):

- Veeam.EndPoint.Backup.exe
- Veeam.EndPoint.Service.exe

[Dima P.]

Hey solution719,

Try to add C:\Program Files\Veeam\Endpoint Backup\x64\VeeamAgent.exe to the list of trusted applications.

[solution719]

Adding all *.exe files located in the following directories works for me:

- C:\Program Files\Veeam\Endpoint Backup\
- C:\Program Files\Veeam\Endpoint Backup\x64\
- C:\Program Files\Veeam\Endpoint Backup\x32\

[Dima P.]

Makes sense. Thank you for sharing.

[xcabur]

Hi, I enabled Windows Folder Access Control to Veeam Endpoint Backup Free target too without adding any *.exe to the whitelist. If I try to make a zip file of a veeam backup file, the folder access control block it. But the backup still works. Now, I'm a little bit confused if folder access control works correctly. Is it realy necessary to add the veeam exe to the whitelist?