Views:
 
Testing Vulnerability Protection feature will require disabling Real-Time Scan and Web Reputation Services.
 

Follow these steps:

  1. Log in to Apex Central
  2. Navigate to Policies > Policy Management.
  3. Create a new policy.
  4. Disable Real-time Scan and Web Reputation Services.
  5. Ensure that Vulnerability Protection is enabled.
  6. Ensure that Restrict Download Of EICAR Test File Over HTTP is enabled.

    Module state

  7. Select a demo machine and deploy the policy.
  8. Once done, download the Eicar test file from the link, http://files.trendmicro.com/products/eicar-file/eicar.com.
  9. Wait for a few minutes and verify if the detection is logged in Apex Central Log Query.

  1. Go to a test machine and create a shared folder with permission for everyone.
  2. Login to Apex Central as a Service.
  3. Select the policy associated to the selected machine in step 1.
  4. Select Vulnerability Protection Settings.
  5. Search for 1009490.

  6. Change status to Enabled.
  7. Click on Deploy.
  8. Using another machine, access the shared folder generated in the machine in step 1.
  9. Login to the Apex Central console and verify if the logs show up under the Intrusion Prevention Log Query.
Keywords: vulnerability protection how to, test vulnerability protection