Skip to main content
All CollectionsSentinelOne & GuardzSentinelOne Exclusions
Creating a Hash Exclusion for SentinelOne

Creating a Hash Exclusion for SentinelOne

Updated over 3 weeks ago

This article is based on SentinelOne community documentation last updated on Feb 24 2025

Exclude a file based on its SHA-1 hash and /or its SHA-256 hash.

  • With this exclusion type Agents suppress (do not create) alerts and do not mitigate detections. Agents monitor the files and processes.

  • SHA-256 support

    • SHA-256 hash signatures are supported by default from version S-25.1.1.

    • SHA-256 hash enforcement is supported on Windows and Linux Agents 24.2 and later, and macOS Agents 24.3 and later.

Procedure: Create a Hash Exclusion Manually from Guardz

  1. Go to Security Controls> Endpoint Security > SentinelOne Exclusions

  2. Click the "+" button to add an exclusion

  3. Choose the Exclusion Type and select Hash.

  4. In OS Type, select the operating system for the exclusion.

  5. Optional: In Description, enter a phrase to make it easy for you and other users to identify this exclusion and understand why it is needed.

  6. Click Add.

Related Articles
Creating a Path Exclusion for SentinelOne
Creating a File Type Exclusion for SentinelOne
Creating a Certificate Signer Identity Exclusion for SentinelOne
Creating a Browser Exclusion for SentinelOne
Best practices for SentinelOne Exclusions
Did this answer your question?