As the virus definitions are downloaded on the endpoint, the default antivirus configurations are also downloaded on this endpoint asset.
Before you configure a New Anti-malware profile, all the Asset(s) are attached to the existing Default profile. Also, the Default profile will be an ultimate fallback profile for Asset(s) without tags or fallouts from Tag-Profile manipulations.
You can create 15 Anti-malware Profiles and add up to 10 tags to each Anti-malware Profile.
1. Navigate to the EDR module > Configuration tab and click New Anti-malware Profile.
The New Anti-malware Profile window is displayed with the following settings:
Step 1: General Settings- requires the name, update frequency, alerts, of the Anti-malware profile. The Name field is the mandatory field in this step.
Step 2: OnAccess Scan- monitors the system activity by blocking the malware before it is executed on the system. Choose and select the options for the
Anti-malware to perform in case of malware detection. It is an optional scan.
Step 3: OnDemand Scan- performs the regular system scans according to the defined schedule.
Choose and select the options for the Anti-malware to perform in case of malware detection. It is an optional scan.
Step 4: Behavioral Scan- configures settings for threats that gets avoided from the heuristic engine. This type of scan adds an extra layer of protection. Choose and select the options for the Anti-malware to perform in case of malware detection. It is an optional scan.
Step 5: Network Protection- configures network settings to protect the users network activity, including web browsing, email, and software applications. Select the options for the Anti-malware to perform in case of malware detection. It is an optional scan.
Step 6: Network Attack Defense- configures and provides a security layer against specific attacks.
Select the options for the Anti-malware to perform in case of malware detection. It is an optional scan.
Step 7: Assets- allows to Add Tags to your Assets. Click the Add Tags link and select the Tags.
Note: When you add tags to a new or an existing Anti-malware profile, the Asset(s) would be assigned to this updated Anti-malware profile.
The Asset(s) will be assigned to the last updated Anti-malware profile when you remove a tag from an existing profile. If the removed tag does not include in any other existing Anti-malware profile, the Asset(s) gets assigned to the Default profile.
Step 8: Exclusions- Files that are not required to be scanned in the OnAccess and OnDemand Scans are added in this field.
Step 9: Review and Confirm- provides a summary of the selections you made for the New Anti-malware Profile. Click Create Anti-malware Profile. Click Previous to make changes in any of the steps.
You can View, Edit, or Clone an existing Anti-malware Profile from the Quick Actions menu.
1) Navigate to the EDR module > Configuration tab.
2) Hover the mouse over the profile you want to perform the View, Edit, or Clone action.
3) Click the drop-down arrow, select the View, Edit, or Clone from the Quick Actions menu and follow the onscreen wizard to configure your profile.
You can Apply the new or an existing Profile on your assets from the Quick Actions menu.
1) Navigate to the EDR module > Configuration tab.
2) Hover the mouse over the profile you want to apply on Assets.
3) Click the drop-down arrow, select the Apply Profiles on Assets from the Quick Actions menu.
Note: If a Tag is not added to the Anti-malware Profile, the Apply Profiles on Assets option is disabled.
4) You will be directed to the Assets tab. From the Actions menu select Apply Anti-malware Profile.
5) Once the profile is applied on the asset(s) you are redirected to the Configuration tab.
A notification is generated once the profile is applied on the Assets.
You can Delete a Profile from the Actions menu.
1) Navigate to the EDR module > Configuration tab.
2) Select the check-box to the left of the Profile Name column.
3) The Actions button is enabled. Click the drop-down arrow and select Delete Profiles.
A confirmation window is displayed.
4) Click Yes if you want to delete the profile.
Note: A Warning window gets displayed if you delete a profile with active Assets attached.
