To update suspicious activity alert settings

Steps

  1. Enter a number in the Threshold field to specify the number of suspicious events that cause an alert to be generated.
  2. Select each notification method (Email, SNMP) to use to deliver suspicious activity alerts.

    Only alert methods that have been enabled on the Enable Alerts page (see Configuring general alert options) are available for selection. Leave the alert methods unchecked to disable alerts for a specific severity.

  3. If the Advanced File Analysis option has been enabled, mark the check box or boxes in the Advanced File Analysis Alerts section to cause an email or SNMP alert to be sent when a file sent for analysis is found to be malicious.

    Each check box is enabled only if the corresponding alert type (email or SNMP) is enabled on the Enable Alerts page.

    Note that threats related to advanced file analysis are not included on the Threats dashboard.

  4. Click OK to cache your changes. Changes are not implemented until you click Save and Deploy.