Enable TIE reputation check for email attachments based on the file reputation category.
Task
1 |
From the product's interface, click
.
|
2 |
Select one item from the
Take actions at and below drop-down list.
• | Known Trusted — The reputation for the file is 99.
| • | Might Be Malicious — The reputation for the file is 30.
| By default,
Might Be Malicious is selected.
|
|
• | Most Likely Trusted — The reputation for the file is 85.
| • | Most Likely Malicious — The reputation for the file is 15.
|
• | Might Be Trusted — The reputation for the file is 70.
| • | Known Malicious — The reputation for the file is 1.
|
• | Unknown — The reputation for the file is 50.
|
|
3 |
In
Take the following action, define these settings as required.
• | Replace item with an alert — Replaces the item with an alert message and logs, quarantines, or notifies as defined in
And also.
|
• | Delete embedded item — Deletes the attachment in the email and logs, quarantines, or notifies as defined in
And also.
|
• | Delete the message — Deletes the email and logs, quarantines, or notifies as defined in
And also.
|
|
4 |
In
And also, configure these settings as required.
• | Log
| • | Notify internal sender
|
• | Quarantine
| • | Notify external sender
|
• | Forward Quarantined email
| • | Notify internal recipient
|
• | Notify administrator
| • | Notify external recipient
|
|
5 |
In Submit files to ATD at and below, select the category and the file size for
Advanced Threat Defense reputation.
|