Configuring Security Risk Scan: Action Settings

When PortalProtect detects a file that matches your scanning configurations, it executes an action to protect your SharePoint environment. The type of action it executes depends on the type of scan being performed (real-time, manual, or scheduled) and the type of actions you have configured for that scan.

The following provides a brief description of the options available:

• ActiveAction: Perform scan actions recommended by Trend Micro.

• ActiveAction performs the primary and secondary scan actions recommended by Trend Micro. If the primary scan action is unsuccessful, the secondary action will be performed. ActiveAction uses pre-configured scan actions for viruses, Trojans, and joke programs.

• Customized action for detected threats: Select to perform an action over all security risks or specify an action for each threat.

• Advanced Options: Specify advanced options for Macros, Unscannable Files, and Backup Settings.

• Select Enable IntelliTrap from the Target tab to detect packed files. See About IntelliTrap for more information.

To configure security risk scan action settings:

1. Log on to the product console.

2. Click Security Risk Scan. The Security Risk Scan screen appears.

3. Click the Action tab. The Action screen displays.

4. Select one of the following:

5. ActiveAction: Notify, Notify when uncleanable, or Do not notify

6. Customized action for detected threats

5. To backup the infected file, select Backup infected file before performing action.

6. Select Do not clean infected compressed files to optimize performance if performance improvement is required.

7. Configure Advanced Options as necessary. Under Advanced Options, click Macros to expand the content.

8. Select, Enable advanced macro scan, to enable the functionality.

9. For Heuristic level, select an option according to the following:

10. 1 - Lenient filtering

11. 2 - Default filtering

12. 3 - Sensitive filtering

13. 4 - Rigorous filtering

10. Select Delete all macros detected by advanced macro scan.

11. Click to expand Unscannable Files to specify actions for encrypted and password protected files, and files not in the scan restriction criteria. Select from the following options:

12. Encrypted or password protected files: Block or Pass

13. Notify or Do not notify

14. Files exceeding specified scanning restrictions: Block or Pass

15. Notify or Do not notify

12. Modify the Backup Setting if required.

13. Click Save.

14. Refer to Security Risk Scan Notifications for information about how to configure the notification settings.

See also:

About IntelliTrap

About Security Risk Scan Action Settings

Configure Macro Scanning Options for Security Risk Scan

Specify a Backup Folder for Security Risk Scan

Scan Compressed Files