Deep Discovery Analyzer 6.9 Online Help
Contents
Index
Search
Collapse All
Expand All
Previous Page
Next Page
Privacy and Personal Data Collection Disclosure
Preface
Documentation
Audience
Document Conventions
Terminology
About Trend Micro
Introduction
About Deep Discovery Analyzer
What's New
Features and Benefits
Enable Sandboxing as a Centralized Service
Custom Sandboxing
Broad File Analysis Range
YARA Rules
Document Exploit Detection
Automatic URL Analysis
Detailed Reporting
Alert Notifications
Clustered Deployment
Trend Micro Product Integration
Web Services API and Manual Submission
Custom Defense Integration
ICAP Integration
Getting Started
The Preconfiguration Console
The Management Console
Logging On Using Local Accounts
Logging On With Single Sign-On
Management Console Navigation
Getting Started Tasks
Integration with Trend Micro Products
Sandbox Analysis
Suspicious Objects List
Exceptions
Dashboard
Dashboard Overview
Tabs
Tab Tasks
New Tab Window
Widgets
Widget Tasks
Adding Widgets to the Dashboard
Summary Tab
Threat Types
Suspicious Objects
Submissions Over Time
Virtual Analyzer Summary
System Status Tab
Virtual Analyzer Status
Queued Samples
Hardware Status
Average Virtual Analyzer Processing Time
Virtual Analyzer
Virtual Analyzer
Submissions
ICAP Submissions
ICAP Pre-scans
ICAP Header Responses
Submissions Tasks
Applying Advanced Filters
Submitting Objects
Manually Submitting Objects
Manually Submitting Objects in Windows
Manually Submitting Objects in Linux
Detailed Information Screen
Viewing Child File Detection Information
Investigation Package
Investigation Package Data Retention
Possible Reasons for Analysis Failure
Suspicious Objects
Suspicious Objects Tasks
User-defined Suspicious Objects List
Managing the User-defined Suspicious Objects List
Exceptions
Exceptions Tasks
Sandbox Management
Status Tab
Images Tab
Importing an Image
Importing an Image Using the Virtual Analyzer Image Import Tool
Modifying Sandbox Instances
YARA Rules Tab
Creating a YARA Rule File
Managing YARA Rule Files
File Passwords Tab
Adding File Passwords
Importing File Passwords
Submission Settings Tab
Submission Settings Tab Tasks
Network Connection Tab
Enabling External Connections
Testing Internet Connectivity
Smart Feedback Tab
Enabling Smart Feedback
Sandbox for macOS Tab
Enabling Sandbox for macOS
Submitters
Alerts and Reports
Alerts
Triggered Alerts Tab
Rules Tab
Critical Alerts
Important Alerts
Informational Alerts
Modifying Rules
Alert Notification Parameters
Critical Alert Parameters
Important Alert Parameters
Informational Alert Parameters
Alert Notification Message Tokens
Reports
Generated Reports Tab
Report Tasks
Generating Reports
Schedules Tab
Add Report Schedule Window
Customization Tab
Administration
Updates
Components Tab
Component Update Settings Tab
Hotfixes / Patches Tab
Installing a Hotfix / Patch
Rolling Back a Hotfix / Patch
Firmware Tab
Integrated Products/Services
Deep Discovery Director Tab
Registering to Deep Discovery Director
Unregistering from Deep Discovery Director
Smart Protection Tab
About Smart Protection Server
Setting Up Smart Protection Server
Configuring Smart Protection Settings
ICAP Tab
Configuring ICAP Settings
Microsoft Active Directory Tab
Configuring Microsoft Active Directory
SAML Authentication Tab
Service Provider Metadata and Certificate
Configuring Identity Provider Settings
Configuring Okta
Configuring Active Directory Federation Services
Configuring Endpoints for Single Sign-on through AD FS
Syslog Tab
Configuring Syslog Settings
System Settings
Network Tab
Proxy Tab
SMTP Tab
Time Tab
SNMP Tab
Configuring Trap Messages
Configuring Manager Requests
Password Policy Tab
Session Timeout Tab
Cluster Tab
Nodes List
Adding a Passive Primary Appliance to the Cluster
Swapping the Active Primary Appliance and the Passive Primary Appliance
Detaching the Passive Primary Appliance from the Cluster
Removing the Passive Primary Appliance from the Cluster
Adding a Secondary Appliance to the Cluster
Removing a Secondary Appliance from the Cluster
Replacing the Active Primary Appliance with a Secondary Appliance
Moving High Availability Cluster Appliances
Changing the IP Segment of High Availability Clusters
High Availability Tab
HTTPS Certificate Tab
Generating a Certificate Signing Request
Importing and Replacing a Certificate
Accounts / Contacts
Accounts Tab
Configuring User Accounts
SAML Tab
Configuring SAML Groups
Contacts Tab
Add Contact Window
System Logs
Querying System Logs
System Maintenance
Back Up Tab
Configuration Settings Backup
Data Backup
Restore Tab
Network Services Diagnostics Tab
Power Off / Restart Tab
Debug Tab
Tools
Virtual Analyzer Image Preparation Tool
Manual Submission Tool
License
About Screen
Technical Support
Troubleshooting Resources
Using the Support Portal
Threat Encyclopedia
Contacting Trend Micro
Speeding Up the Support Call
Sending Suspicious Content to Trend Micro
Email Reputation Services
File Reputation Services
Web Reputation Services
Other Resources
Download Center
Documentation Feedback
Appendices
Service Addresses and Ports
SNMP Object Identifiers
SNMP Query Objects
SNMP Traps
Registration Objects
TLS 1.2 Support for Integrated Products/Services
account management
[1]
Activation Code
[1]
Active Directory Federation Services (AD FS)
[1]
AD FS
[1]
administration
[1]
file passwords
[1]
Advanced Threat Scan Engine
[1]
[2]
alerts
[1]
[2]
[3]
[4]
[5]
[6]
[7]
[8]
[9]
[10]
[11]
[12]
[13]
[14]
[15]
[16]
critical alerts
[1]
important alerts
[1]
informational alerts
[1]
notification parameters
[1]
[2]
[3]
[4]
[5]
[6]
[7]
[8]
[9]
[10]
[11]
[12]
[13]
API key
[1]
ATSE
[1]
[2]
average Virtual Analyzer queue time alert
[1]
C&C list
[1]
components
[1]
configuration
management console
[1]
contact management
[1]
CPU usage alert
[1]
critical alerts
[1]
[2]
customized alerts and reports
[1]
dashboard
[1]
[2]
dashboard
tabs
[1]
overview
[1]
tabs
[1]
widgets
[1]
[2]
[3]
Deep Discovery Malware Pattern
[1]
[2]
detected message alert
[1]
detection surge alert
[1]
disk space alert
[1]
documentation feedback
[1]
email scanning
file passwords
[1]
exceptions
[1]
file passwords
[1]
generated reports
[1]
getting started
management console
[1]
getting started tasks
[1]
HTTPS certificate
[1]
geenrate a certificate signing request
[1]
import and replace certificate
[1]
ICAP
[1]
headers
[1]
MIME content-types
[1]
settings
[1]
ICAP integration
[1]
identity provider
[1]
configure
[1]
federation metadata file
[1]
image import tool
[1]
images
[1]
[2]
[3]
important alerts
[1]
[2]
[3]
[4]
[5]
[6]
[7]
[8]
[9]
[10]
[11]
import image
[1]
informational alerts
[1]
integration with other products
[1]
IntelliTrap Exception Pattern
[1]
[2]
IntelliTrap Pattern
[1]
[2]
Internet Content Adaptation Protocol (ICAP)
[1]
license
[1]
license expiration alert
[1]
log settings
[1]
management console
[1]
navigation
[1]
session duration
[1]
management console accounts
[1]
message delivery alert
[1]
Network Content Correlation Pattern
[1]
Network Content Inspection Engine
[1]
Network Content Inspection Pattern
[1]
notification parameters
[1]
OAuth 2.0
[1]
Okta
[1]
on-demand reports
[1]
preconfiguration console
[1]
processing surge alert
[1]
product integration
[1]
reports
[1]
[2]
on demand
[1]
report schedules
[1]
SAML authentication
[1]
Configuration overview
[1]
Supported identity providers
[1]
SAML integration
configuring identify provider settings
[1]
sandbox analysis
[1]
[2]
sandbox error alert
[1]
sandbox images
[1]
[2]
[3]
sandbox instances
[1]
sandbox management
[1]
archive passwords
[1]
images
[1]
importing
[1]
[2]
modifying instances
[1]
image status
[1]
network connection
[1]
[2]
Virtual Analyzer status
[1]
sandbox queue alert
[1]
Script Analyzer Pattern
[1]
Security Assertion Markup Language (SAML)
[1]
service provider
[1]
certificate
[1]
metadata file
[1]
service stopped alert
[1]
Spyware/Grayware Pattern
[1]
submissions
[1]
support
resolve issues faster
[1]
suspicious objects
[1]
syslog server
[1]
syslog settings
syslog server
[1]
system maintenance
[1]
back up tab
[1]
configuration settings backup
[1]
data backup
[1]
cluster tab
primary appliance
[1]
remove
[1]
secondary appliance
[1]
[2]
[3]
test connection
[1]
nodes list
[1]
restore tab
[1]
system settings
[1]
Network Tab
[1]
Password Policy Tab
[1]
power off / restart tab
[1]
Proxy Tab
[1]
Session Timeout Tab
[1]
Time Tab
[1]
tabs
[1]
third-party licenses
[1]
TLS
[1]
tools
[1]
unreachable relay MTA alert
[1]
update completed surge
[1]
update failed alert
[1]
updates
[1]
components
[1]
firmware
[1]
update settings
[1]
Virtual Analyzer
[1]
[2]
file passwords
[1]
image import tool
[1]
import image
[1]
[2]
Virtual Analyzer Configuration Pattern
[1]
Virtual Analyzer Sensors
[1]
watchlist alert
[1]
widgets
[1]
[2]
add
[1]
tasks
[1]
YARA rule file
create
[1]
requirements
[1]
Search
Toggle search result highlighting
Dashboard
This chapter describes the
Deep Discovery Analyzer
dashboard.
Related information
Dashboard Overview
Tabs
Widgets
Summary Tab
System Status Tab