File Inspection Profiles Overview

Access this page from Shared Services > ATP > File Inspection Profiles.

Juniper ATP Cloud profiles let you define which files to send to the cloud for inspection. You can group types of files to be scanned together (such as .tar, .exe, and .java) under a common name and create multiple profiles based on the content you want scanned. Then enter the profile names on eligible Juniper Secure Edge devices to apply them.

Benefits of File Inspection Profiles

Allows you to create file categories to send to the cloud for scanning rather than having to list every single type of file you want scanned.
Allows you to configure multiple scanning categories based on file type, adding and removing file types when necessary, increasing or decreasing granularity.

Table 1: File Category Contents
Category	Description
Archive	Archive files
Configuration	Configuration files
Document	All document types except PDFs
Executable	Executable binaries
ELF	Executable and Linkable Format (ELF) is a standard file format for executable files, object code, and libraries.
Java	Java applications, archives, and libraries
Library	Dynamic and static libraries and kernel modules
Mobile	Mobile formats
OS package	OS-specific update applications
PDF	PDF, e-mail, and MBOX files
Rich Application	Installable Internet Applications such as Adobe Flash, JavaFX, Microsoft Silverlight
Script	Scripting files

You can also define the maximum file size requirement per each category to send to the cloud. If a file falls outside of the maximum file size limit the file is automatically downloaded to the client system.

Note:

If you are using the free or basic model of Juniper ATP Cloud, you are limited to only the executable file category.

Note:

The ELF file types support both static analysis and dynamic analysis.

Juniper ATP Cloud periodically polls for new and updated content and automatically downloads it to Juniper Secure Edge. There is no need to manually push your profile.