Deep Security Manager (DSM) is configured to automatically apply the recommended rules during Scan for Recommendations. However, some of the recommended DPI rules are not applied automatically.
The following appears in the DPI rule's Options tab:
Deep Security Manager cannot auto apply this rule during a Scan For Recommendations.
DSM displays the text in the dialog when our Security Center Team has specifically denoted that a rule should not be auto-applied.
These rules belong to following categories:
- User/administrator should understand what the rule is for and they should assign if they need it. These rules generally have a chance for false positives.
- "We think you may need this rule but we are not at all sure" category. Sometimes, writing recommendation rules (not visible to customers) is not easy. We write rules on best-we-can basis. We cannot go very accurate at times.
- Rules require further configuration prior to assignment.