Configuring Predictive Machine Learning Settings

Note:

Predictive Machine Learning requires the following:

  • Enable Behavior Monitoring in Configure Policy > Behavior Monitoring

  • If a functional Internet connection is unavailable, the local Predictive Machine Learning file model continues to protect against portable executable file threats.

  1. Go to the Configure Policy screen by performing one of the following:

    • Classic Mode: Go to SECURITY AGENTS and select a group. Click > Configure Policy.

    • Advanced Mode: Go to POLICIES > Policy Management. Click Add or click an existing policy.

  2. Click Windows.
  3. Go to Predictive Machine Learning.
  4. Under Predictive Machine Learning, enable the feature and configure the required settings.
  5. Under Detection Settings, select the type of detections and related action that Predictive Machine Learning takes.
    Table 1.

    Detection Type

    Actions

    File

    • Quarantine: Select to automatically quarantine files that exhibit malware-related features based on the Predictive Machine Learning analysis

    • Log only: Select to scan unknown files and log the Predictive Machine Learning analysis for further in-house investigation of the threat

    Process

    • Terminate: Select to automatically terminate processes or scripts that exhibit malware-related behaviors based on the Predictive Machine Learning analysis

      Important:

      Predictive Machine Learning attempts to clean the files that executed the malicious processes or scripts. If the clean action is unsuccessful, Predictive Machine Learning quarantines the affected files.

    • Log only: Select to scan unknown processes or scripts and log the Predictive Machine Learning analysis for further in-house investigation of the threat
  6. Click Save.
Parent topic: Windows Policy Settings