To configure security exceptions for the Advanced Threat Protection policy:

1. Go to Policies > Cybersecurity > Inline Security > Advanced Threat Protection.
2. Click the Security Exceptions tab.

3. In Do Not Scan Content from these URLs, enter URLs you want to allowlist for ATP, or URLs you don't want to inspect for ATP, and click Add Items. You can enter multiple entries by hitting Enter after each entry. You can add up to 1,024 URLs. To learn more, see Ranges & Limitations. For guidance on entering URLs, see the URL format guidelines. For item lists, you can view up to 500 items on a page; filter the list by searching for a word, phrase, or number contained in an item; and remove the first 25K items from the list (Remove 25K Items) or only items from a specific page (Remove Page). If you select Remove 25K Items or Remove Page, a confirmation window will appear.

   This allowlist also applies to the Malware Protection and Sandbox policies. If you want to allowlist URLs and files completely, you must also configure the URL Filtering, File Type Control, and IPS Control policies. To learn more, see Adding URLs to the Allowlist.

   See image.

   

   Close

4. Click Add Items.
5. Click Save and activate the change.