Adding a Privileged Process

Constraints

• Only the servers that are protected by the HSS WTP edition support the operations described in this section.
• For Linux systems, only x86 OSs with kernel 4.18 support this function.
• The privileged process takes effect only for Agent 3.2.4 or later.
• A maximum of 10 privileged processes can be added to each server.

Prerequisites

The Protection Status of the server must be Protected. To view the status, choose Prevention > Web Tamper Protection. Click the Servers tab.

Adding a Privileged Process

1. Log in to the management console.
2. In the upper left corner of the page, click , select a region, and choose Security > Host Security Service.
3. Choose Prevention > Web Tamper Protection, click Configure Protection.
4. Click Privileged Process Settings and then Settings.
5. On the Privileged Process Settings page, click Add Privileged Process.
6. In the Add Privileged Process dialog box, enter the path of the privileged process.

   The process file path must contain the process name and extension, for example, C:/Path/Software.type. If the process has no extension, ensure the process name is unique.

7. Click OK.
8. Enable Trust Subprocess to trust the subprocess in the path of the added privileged file.
   

   When this function is enabled, subprocesses at the five levels under all privileged process files are trusted.

Follow-Up Procedure

Modifying or deleting existing privileged processes

In the Operation column of a process file path, click Edit to modify the privileged processes or click Delete to delete it if it is unnecessary.

• After you edit or delete the process file path, the privileged process cannot modify the files in the protected directory. To avoid impact on services, exercise caution when performing these operations.
• Unnecessary privileged processes should be deleted in a timely manner as they may be exploited by attackers.