Actions tab

Option definitions

Configure which actions to take when a threat or potentially unwanted program is detected. If you are configuring different scanning policies for default, low-risk, and high-risk processes, the options on this tab must be configured for each process type.

Option Definition
Settings for Select Workstation or Server from the drop-down list.
Note: This option is only available via ePolicy Orchestrator.
When a threat is found Perform this action first — Select the first action that you want the scanner to take when a threat is detected. Default = Clean files automatically.
  • Clean files automatically — The scanner tries to remove the threat from the detected file.
  • Deny access to files — Deny all users access to any files with potential threats that the scanner finds.
  • Delete files automatically — The scanner deletes files with potential threats as soon as it detects them.
If the first action fails, then perform this action — Select the next action you want the scanner to take if the first action fails. Default = Delete files automatically.
  • Deny access to files — Deny all users access to any files with potential threats that the scanner finds.
  • Delete files automatically — The scanner deletes files with potential threats as soon as it detects them.
When an unwanted program is found Perform this action first — Select the first action that you want the scanner to take when a potentially unwanted program is detected. Default = Clean files automatically.
  • Allow access to files — Give users access to detected files and/or programs.
    Note:

    Use this action to monitor what is being detected before you decide which actions to take. Review the activity log to see which programs are being detected. No secondary action is allowed for this option.


  • Clean files automatically — Remove the threat from detected files and/or programs automatically.
  • Deny access to files — Prevent users from accessing detected files and/or programs.
  • Delete files automatically — Remove detected files and/or programs automatically.
If the first action fails, then perform this action — Select the next action you want the scanner to take if the first action fails. Default = Delete files automatically.
  • Allow access to files — Give users access to detected files and/or programs.
  • Deny access to files — Prevent users from accessing detected files and/or programs.
  • Delete files automatically — Remove detected files and/or programs automatically.