How to Add a Signing Certificate into the VMware Carbon Black Cloud Reputation List

Summary: A signing certificate can be added into the reputation list of VMware Carbon Black Cloud Endpoint using these instructions.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

Affected Products:

  • VMware Carbon Black Cloud

Affected Operating Systems:

  • Windows
  • Mac
  • Linux

VMware Carbon Black Cloud allows for Certificates to be used to automatically add executables and files that are signed by the certificate to an Approved List for the VMware Carbon Black reputation engine. This ensures that those applications do not fail a reputation check, resulting in a block of the application.

Cause

Not Applicable

Resolution

A certificate’s issuer and signer must be identified to add the signing certificates to the VMware Carbon Black Cloud reputation list. The information can be placed within the VMware Carbon Black Cloud console, once identified.

  1. Right-click the executable and then select Properties.

Properties
Figure 1: (English Only) Properties

Note: In the example, DiagnosticInfo is the executable.
  1. Select the Digital Signatures tab.

Select Digital Signatures tab
Figure 2: (English Only) Select Digital Signatures tab

  1. Select the highest available Digest algorithm and then click Details.

Select highest available Digest algorithm and click Details
Figure 2: (English Only) Select the highest available Digest algorithm and click Details

Note:
  • If no Digest algorithm is available, then the application does not contain a signing certificate.
  • The Digest algorithm that is used in the example may differ in your environment.
  1. Click View Certificate.

View Certificate
Figure 3: (English Only) View Certificate

  1. The Issued to, and the Issued by correlate to the Signed by and Certificate Authority (respectively) within Carbon Black.

Certificate Information
Figure 4: (English Only) Certificate Information

  1. Log in to the Carbon Black Cloud (https://defense-prod05.conferdeploy.net This hyperlink is taking you to a website outside of Dell Technologies.).
Note: All connections to the VMware Carbon Black Cloud are over 443 (https) using TLS 1.2.
  1. Expand the Enforce option, then select Reputation section.

Reputation
Figure 5: (English Only) Reputation

Note: The navigation menu may be different in your environment.
  1. Select the Add option in the upper right:

Add
Figure 6: (English Only) Add

  1. Select the Certs option.
  2. Enter the Signed by (Issued to from the Digital Signature information of an executable).
  3. Optionally, enter the Certificate Authority (Issued by from the Digital Signature information of an executable).
  4. Optionally enter any Notes.
  5. Select the Save option once complete.

Update information and click save
Figure 7: (English Only) Update information and click save

To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.

Affected Products

VMware Carbon Black
Article Properties
Article Number: 000129440
Article Type: Solution
Last Modified: 03 Jun 2024
Version:  14
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.