Skip to main content
Skyhigh Security

Block Access to Malware-infected Objects after Additional Scanning

You can configure which web requests are allowed to skip processing by Advanced Threat Defense. You can also configure the media types that are allowed to skip processing or must be processed by Advanced Threat Defense.

You must have the Advanced Threat Defense software installed and running to enable this additional filtering process. In this process, your instance of Advanced Threat Defense must connects to Secure Web Gateway. The following settings must be configured for this connection:

  • User name and password that Secure Web Gateway uses to authenticate to Advanced Threat Defense
  • Host name or IP address and port number of the server hosting Advanced Threat Defense

A certificate for a certificate authority (CA) must also be provided.

NOTE: From this rule set, you can open and configure the Anti-Malware for ATD feature.

  1. On the user interface, select Policy > Web Policy > Policy.
  2. From the policy tree, select Threat Protection > Advanced Threat Defense.
  3. Optionally configure criteria to limit the scope of this rule set.
  4. Select the ATD rules that you want to enable. When selected, the rules in this rule set work as follows:
    • Skip ATD processing for these User Agents — Skips ATD processing of web requests sent by the User Agents in this list.
      A User Agent is the software that sends the web request for the user, for example, a web browser. The user-agent information is passed in the user-agent header of the web request.
    • Skip ATD processing for these domains, hosts or URLs — Skips ATD processing of web requests sent to the domains, hosts, or URLs in this list.
  5. Select how to handle media types:
    • Skip ATD processing for these media types — Media types in this list are allowed to skip processing by Advanced Threat Defense.
    • Force ATD processing for these media types — Media types in this list must be processed by Advanced Threat Defense.
  6. Configure the lists associated with the rules as needed.

Changes to the policy tree, rule sets, or rules are saved when you incorporate them. You can publish them to the cloud or keep working and publish later.

  • Was this article helpful?