Views:

Based on the current product design, the following Anti-Malware actions will be available in Anti-Malware syslog events:

Pass
Delete
Quarantine
Clean
Deny Access
Terminate
Unspecified

The Unspecified is the action for syslog of all failed actions.

To see the correct action taken in Anti-Malware events, you still need to refer to the Anti-Malware events (e.g. pass failed, delete failed, etc.)

Keywords: action type for anti-malware events,am events syslog, quarantine, quaratine

Anti-Malware action types in syslog of Deep Security

Product / Version includes:

Deep Security11.1 , Deep Security11.2 , Deep Security11.0 , Deep Security10.2 , Deep Security10.1 , Deep Security10.0 , Deep Security10.3

Last updated: 2021/08/28

Solution ID: KA-0009052

Category: Configure

Summary

Know the list of possible action types within the Deep Security syslog message for Anti-Malware events.

Based on the current product design, the following Anti-Malware actions will be available in Anti-Malware syslog events:

Pass
Delete
Quarantine
Clean
Deny Access
Terminate
Unspecified

The Unspecified is the action for syslog of all failed actions.

To see the correct action taken in Anti-Malware events, you still need to refer to the Anti-Malware events (e.g. pass failed, delete failed, etc.)

Was this article helpful?