Skip Navigation

Add a certificate to the
CylancePROTECT Desktop
global safe list

For custom software that is properly signed, add the certificate to the certificates list to allow the software to run without interruption. This allows administrators to create a safe list by signed certificate which is represented by the SHA1 thumbprint of the certificate. When adding certificate information to the management console, the certificate itself is not uploaded or saved to the management console; the certificate information is extracted and saved to the management console (timestamp, subject, issuer, and thumbprint). The certificate timestamp represents when the certificate was created. The management console does not check if the certificate is current or expired. If the certificate changes (for example, renewed or new), it should be added to the safe list in the management console. The safe list by certificate feature works with PowerShell, ActiveScript, and Office macros.
This feature currently works with
Windows
and
macOS
only.
Identify the certificate thumbprint for the signed Portable Executable (PE).
  1. In the management console, on the menu bar, click
    Settings > Certificates
    .
  2. Click
    Add Certificate
    .
  3. Click either
    Browse for certificates to add
    or drag-and-drop the certificate to the message box. If browsing for the certificates, the Open window displays to allow selection of the certificates.
  4. Optionally, you can select the file type the certificate
    Applies to
    , Executable, or Script. This allows you to add an executable or script by a certificate instead of a folder location.
  5. Optionally, add notes about the certificate.
  6. Click
    Submit
    . The Issuer, Subject, Thumbprint, and Notes (if entered) are added to the repository.
When a certificate has expired or been revoked, you must remove the certificate and add a newly issued certificate. To remove a certificate, select the certificate and click
Remove From List
, then click
Yes
to confirm. To add a valid certificate again, follow the steps above.