We've been running into issues with users who are trying to use Webex or GoToMeeting and being blocked by HIPS. I know that these programs typically run from the user's AppData directory but what I've noticed, especially with WebEx is that they are constantly changing the folder location from which the executables run from. I've added the locations that I know about in the Trusted File Lists and in the File Protection rules. I've added both the path and just the executable to this but both of these programs still seem to get blocked.
Is there a way to whitelist these types of programs so that they do not get blocked if they run from a different location?
I did have the Vendors in the signed code, but for Webex I was missing the wildcard - Always something small. After I added the wildcard I was able to test successfully. Thank you.