Configuring Security Risk Scan: Action Settings Parent topic

When PortalProtect detects a file that matches your scanning configurations, it executes an action to protect your SharePoint environment. The type of action it executes depends on the type of scan being performed (real-time, manual, or scheduled) and the type of actions you have configured for that scan.
The following provides a brief description of the options available:
  • ActiveAction: Perform scan actions recommended by Trend Micro.
    Tip
    Tip
    ActiveAction performs the primary and secondary scan actions recommended by Trend Micro. If the primary scan action is unsuccessful, the secondary action will be performed. ActiveAction uses pre-configured scan actions for viruses, Trojans, and joke programs.
  • Customized action for detected threats: Select to perform an action over all security risks or specify an action for each threat.
  • Advanced Options: Specify advanced options for Macros, Unscannable Files, and Backup Settings.

Procedure

  1. Log on to the product console.
  2. Click Security Risk Scan.
    The Security Risk Scan screen displays.
  3. Click the Action tab.
    The Action screen displays.
  4. Select one of the following:
    • ActiveAction
      Notify, Notify when uncleanable, or Do not notify
    • Customized action for detected threats
  5. To backup the infected file, select Backup infected file before performing action.
  6. Select Do not clean infected compressed files to optimize performance if performance improvement is required.
  7. Configure Advanced Options as necessary. Under Advanced Options, click Macros to expand the content.
  8. Select Enable advanced macro scan to enable the functionality.
  9. For Heuristic level, select an option according to the following:
    • 1 - Lenient filtering
    • 2 - Default filtering
    • 3 - Sensitive filtering
    • 4 - Rigorous filtering
  10. Select Delete all macros detected by advanced macro scan.
  11. Click to expand Unscannable Files to specify actions for encrypted and password protected files, and files not in the scan restriction criteria. Select from the following options:
    • Encrypted or password protected files
      1. Block or Pass
        and...
      2. Notify or Do not notify
    • Files exceeding specified scanning restrictions
      1. Block or Pass
        and...
      2. Notify or Do not notify
  12. Modify Backup Setting if required.
  13. Click Save.
    Note
    Note
    See Configuring Security Risk Scan Notifications for details on how to configure the notification settings.