Notification Message Tokens Parent topic

Deep Discovery Web Inspector sends notifications to alert end users about a security violation or if Deep Discovery Web Inspector detects other issues when a user attempts to access a web resource.
Each notification uses tokens to customize the message content and to provide information that is specific to that violation. Not all tokens are valid in every notification.
If you want to customize the notifications, you can use the following table to determine which tokens are accepted in each notification.

Notification Message Tokens

Token
Field Name
Notifications Where Token Valid
%URL%
URL
Blocked List notification
HTTPS Certificate Verification Failure notification
Website Blocked: Advanced Threat Protection notification
Website Blocked: HTTPS Certificate Verification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%DOMAIN%
Domain
Blocked List notification
HTTPS Certificate Verification Failure notification
Website Blocked: Advanced Threat Protection notification
Website Blocked: HTTPS Certificate Verification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%SERVER_IP%
Server IP
Blocked List notification
HTTPS Certificate Verification Failure notification
Website Blocked: Advanced Threat Protection notification
Website Blocked: HTTPS Certificate Verification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%POLICY_NAME%
Policy name
Website Blocked: Advanced Threat Protection notification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%URL_CATEGORY%
URL Category
Website Blocked: Advanced Threat Protection notification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%USER%
User
Blocked List notification
HTTPS Certificate Verification Failure notification
Website Blocked: Advanced Threat Protection notification
Website Blocked: HTTPS Certificate Verification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%USER_GROUP%
Group name
Website Blocked: Advanced Threat Protection notification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
Note
Note
This token is displayed only if domain groups are configured in a policy or HTTPS Inspection policy, and this policy or HTTPS Inspection policy is matched. The token displays the configured domain group name (CommonName).
%FILE_NAME%
File Name in HTTP Request or HTTP Response
HTTPS Certificate Verification Failure notification
Website Blocked: Advanced Threat Protection notification
Website Blocked: HTTPS Certificate Verification
Website Blocked: Patient-Zero notification
Website Blocked: Scan Policy Block notification
%MALWARE_NAME%
Malware name
Website Blocked: Advanced Threat Protection notification
%THREAT_TYPE%
Threat type
Website Blocked: Advanced Threat Protection notification
%RISK_LEVEL%
Risk level
Website Blocked: Advanced Threat Protection notification
%TECH_TYPE%
Detection type
Website Blocked: Advanced Threat Protection notification
%DETAIL%
Detail
HTTPS Certificate Verification Failure notification
Website Blocked: HTTPS Certificate Verification
%HTTPS_POLICY_NAME%
HTTPS policy name
HTTPS Certificate Verification Failure notification
Website Blocked: HTTPS Certificate Verification