This page helps you set rules for sending notifications for events such as when update Agent virus definition are older and virus outbreak.
You need to create a rule and a list of Email addresses to send the notifications.
Set rules to send notification
- Select the Enable Notifications Settings check box to set the rules. You can see the list of settings with > sign to expand and toggle button. Expand and enable Email that you want to configure.
- Enable and expand Virus Infection. You can select the respective Email check boxes for Virus detected on endpoints and Virus active on endpoints.
- For Virus outbreak in network, select values for the following to send the notification when the values are attended:
- Number of virus incidents exceeds
- Number of affected endpoints
- Time span (minutes)
- For Ransomware detected on endpoints, select the Email. check box.
- Enable and expand IDS/IPS. You can select the respective Email check boxes for the following.
- Intrusion detected on endpoint
- Port Scanning incident detected on endpoint
- DDOS Attack detected on endpoint
- Enable and expand Advanced Device Control. You can select the respective Email check box for the following.
- Attempt to breach the Device Control policy
- Enable and expand DLP. You can select the Email check box for the following.
- Attempt to breach DLP policy
- Enable and expand Application Control. You can select the Email check box for the following.
- Attempt to access unauthorized application
- Enable and expand Update. Select the number of days for the following if you want to change the default value of 15:
- Endpoint virus definition is older than N Days
- Update Agent virus definition is older than N Days
- Enable and expand Asset Management. You can select the Email check box for the following.
- Hardware change detected on endpoints
- Enable and expand Install through Active Directory. You can select the Email check box for the following.
- Synchronization with Active Directory failed
- Enable and expand Client Deployment. You can select the respective Email check boxes for the following.
- Endpoint installation successful
- Endpoint uninstallation successful
- Unprotected Endpoints
- SMTP must be configured to add Email address for event notification. If SMTP is not configured, Configure SMTP button is displayed.
Click Configure SMTP button then you will be redirected to SMTP Settings page to configure SMTP. - Enter Email address in the text box and click Add. When the set rule condition is attended, a notification is sent to the Email addresses added here. You can delete or edit the Email addresses.
- Click Save.