You can change or create a new Threat Scan plan for an existing Threat Scan group.
Procedure
-
From the Command Center navigation pane, go to Security services > Threat scan.
The Threat Scan page appears.
The Threat Scan groups tab shows all existing Threat Scan groups.
-
For the resource group you want to edit, click the Actions button
, and then select Manage plan.The Threat Scan plan dialog box appears.
-
Select a new plan from the Plan list, or create a new plan.
-
To create a new plan, click the Add button
.The Create Threat Scan Plan dialog box appears.
-
Enter a name for the new plan in the Plan name field.
-
Under Configurations, do the following:
-
Anomaly detection is enabled by default and cannot be disabled. It automatically monitors backup metadata and file attributes to identify suspicious or unusual activity patterns.
-
Threat detection. Enable this option and then select from the following:
-
Encryption detection. Select this to scan backups for encrypted files and ransomware threats.
-
Malware detection. Scans backups for known malware signatures to identify threats.
-
-
-
If you want to add your own storage, under Compute, select Bring your own compute and then select the following:
-
Storage. Select an existing storage pool.
-
Access nodes. Either select an existing access node, or click the Add button
and then add a new access node.
-
-
Under Advanced options, do the following:
-
To create a schedule for the plan, click the Edit button
and then enter criteria for the schedule. -
Auto scan anomalous resources only. When this option is enabled, resources flagged as anomalous are scanned automatically.
-
-