In certain environments it may be desired to exclude Security scanning for files. This solution demonstrates how to configure this option.
There is currently no option within Quest One Idenity Manager Data Governance Edition to disable the scanning of files. However, it is possible by modifying the Agent config file.
The default file and location is:
C:\Program Files\Quest Software\Data Governance\Agent Service\baseagent.baseconfig.xml
Modify the value of "0" to "1" here:
<Setting name="ignoreFiles" type="DWORD">
When set to 1 files will be ignored. The Agent needs to be restarted after changing the setting.
Please note that following behavior will occur:
The following registry key can be created to override config file setting:
DWORD value ignoreFiles = 1
It is useful to use the registry key when you need to apply the setting on multiple agents (create the key via GPO). The registry key should be used on local Windows machine prior installing the agent in order to apply the setting for the first security scan that starts automatically after agent installation.
To confirm that the agent received the correct configuration, check the 'currentconfig.xml' file in the agent directory structure for Ignorefiles=1.