Creating File Inspection Profiles
Access this page from Configure > Threat Prevention > Sky ATP Malware Management and choose the File Inspection Profiles tab.
Read the File Inspection Profiles Overview topic.
Read the File Scanning Limits topic.
Note that if you are using the free version of Sky ATP, only executable files are scanned.
To configure file inspection profiles:
- From the File Inspection Profiles tab, click the + sign.
- Enter a name for the profile. (You can create multiple profiles for file inspection.)
- Select a Sky ATP Realm.
- Select the file types to include using the check boxes. You can also define the maximum file size requirement per each category to send to the cloud. If a file falls outside of the maximum file size limit, the file is automatically downloaded to the client system. See Table 1 for the list of file types for each category.
- Click OK.
Table 1: File Category Contents
Category | Description |
---|---|
Active media | Flash and Silverlight applications |
Archive | Archive files |
Code | Source code |
Config | Configuration files |
Document | All document types except PDFs |
Emerging threat | A special category that includes known threat source file types |
Executable | Executable binaries |
Java | Java applications, archives, and libraries |
Library | Dynamic and static libraries and kernel modules |
Media | Audio video formats |
OS package | OS-specific update applications |
Script | Scripting files |
Portable document | PDF, e-mail, and MBOX files |
Once the profile is created, use the set services advanced-anti-malware policy CLI command to associate it with the Sky ATP profile.