Configuring Threat Intelligence Sharing Settings

  1. On the Deep Discovery Email Inspector management console, go to Administration > Integrated Products/Services > Threat Intelligence Sharing.
  2. Select Enable Threat Intelligence Sharing to allow integrated products/services to obtain information from Deep Discovery Email Inspector.
  3. Under Criteria, select the risk level of the objects to be included in the threat intelligence data file.
  4. (Optional) By default, Deep Discovery Email Inspector shares threat intelligence data through HTTPS web service. You can also enable HTTP web service for data sharing. Under Server Settings, select Share information using HTTP (in addition to HTTPS) and specify the HTTP port number.
  5. (Optional) Under Schedule Settings, select Enabled for Scheduled file generation and configure the schedule settings.
  6. Click Save.
  7. Click Generate Now.
    Note:

    After the file generation is successfully, you can click the URL to download the threat intelligence data file to view the content.

  8. Configure an integrated product/service (for example, Blue Coat ProxySG device) to obtain threat intelligence data from Deep Discovery Email Inspector. For more information, see the documentation for the integrated product/service.