Option definitions
Configure
which actions to take when a threat or potentially unwanted program
is detected. If you are configuring different scanning policies
for default, low-risk, and high-risk processes, the options on this
tab must be configured for each process type.
Option |
Definition |
Settings for |
Select Workstation or Server from
the drop-down list. Note: This option is only available
via ePolicy Orchestrator.
|
When a threat is found |
Perform this action first —
Select the first action that you want the scanner to take when a
threat is detected. Default = Clean files automatically.
- Clean
files automatically — The scanner tries to remove the threat
from the detected file.
- Deny access
to files — Deny all users access to any files with potential
threats that the scanner finds.
- Delete
files automatically — The scanner deletes files with potential
threats as soon as it detects them.
If the first
action fails, then perform this action — Select the
next action you want the scanner to take if the first action fails. Default
= Delete files automatically.
- Deny access
to files — Deny all users access to any files with potential
threats that the scanner finds.
- Delete
files automatically — The scanner deletes files with potential
threats as soon as it detects them.
|
When an unwanted program is found |
Perform this action first —
Select the first action that you want the scanner to take when a
potentially unwanted program is detected. Default = Clean files
automatically.
- Allow
access to files — Give users access to detected files and/or
programs.
Note: Use this action to monitor what
is being detected before you decide which actions to take. Review
the activity log to see which programs are being detected. No secondary
action is allowed for this option.
- Clean
files automatically — Remove the threat from detected
files and/or programs automatically.
- Deny access
to files — Prevent users from accessing detected files
and/or programs.
- Delete
files automatically — Remove detected files and/or programs
automatically.
If the first action fails, then
perform this action — Select the next action you want
the scanner to take if the first action fails. Default = Delete
files automatically.
- Allow
access to files — Give users access to detected files and/or
programs.
- Deny access
to files — Prevent users from accessing detected files
and/or programs.
- Delete
files automatically — Remove detected files and/or programs
automatically.
|
|