Configuring Virus Scanning Policies

6.4	Configuring Virus Scanning Policies

For allowed downloads, GFI WebMonitor applies virus-scanning controls, which include any of the following:

•	Display download progress and status

•	Scan the downloaded file with any of the supported virus scanners

•	Take any of the following action when a virus is detected:

o	Issue a warning, but allow access to the downloaded file

o	Block access to the downloaded file and quarantine

o	Block access to the downloaded file and delete it

$\\fileserver\content\manuals\english\webmon2009\images\WebSecurity - Virus Scanning Policies.png$

Screenshot 45 - Virus Scanning Policies

6.4.1

Adding a Virus Scanning Policy

To add a virus scanning policy:

1. Click on WebSecurity Edition ► Virus Scanning Policies from the navigation bar.

2. Click on Add Policy.

3. Click on the General tab.

$\\fileserver\content\manuals\english\webmon2009\images\WebSecurity - Add new virus scanning policy.png$

Screenshot 46 - Add new virus scanning policy

4. Provide new policy name and description in the Policy Name field and the Policy Description text box respectively.

$\\fileserver\content\manuals\english\webmon2009\images\WebSecurity - Virus Scanning Policies - Virus Scanning Tab.png$

Screenshot 47 - Add new virus scanning policy: Virus scanning tab

5. Click on the Virus Scanning tab and click on the file type you want to scan for viruses. From the Change Action dialog box select the Display download progress and status option (if required) and choose the virus scanners to scan the file type with. Also, choose the action to undertake if a virus is found. The available options are:

•	Warn and Allow

•	Block and Quarantine

•	Block and Delete

$\\fileserver\content\manuals\english\webmon2009\images\WebSecurity - Virus Scanning Policies - Applies to Tab.png$

Screenshot 48 - Add new virus scanning policy: Applies to tab

6. Click OK, select Applies Tab and specify the user(s), group(s) and/or IP(s) for whom the new policy applies. Repeat for all user(s), group(s) and/or IP(s) required.

NOTE: When adding a user, specify the username in the format DOMAIN\user.

$\\fileserver\content\manuals\english\webmon2009\images\WebSecurity - Virus Scanning Policies- Notification tab.png$

Screenshot 49 - Add new virus scanning policy: Notification tab

7. Click on the Notifications tab and select Notify the following administrators when the download content infringes this policy checkbox if required. Complete setup with the administrator’s notification email address and notification e-mail text. Provide the body text for the notification email in the Send the following notification to the administrators text box.

8. If you require users to be notified when the policy you are creating is triggered, select the option Notify the user performing the download when the downloaded content infringes this policy checkbox and provide the notification email text.

9. Complete new policy setup by clicking on Save Settings

The policy you have just created will be listed in the main Virus Scanning Policies view.

6.4.2

Editing a Virus Scanning Policy

To edit a virus scanning policy:

1. Click on WebSecurity Edition ► Virus Scanning Policies from the navigation bar.

2. Click on the edit icon $\\fileserver\content\manuals\english\webmon2009\images\Icon-Edit.PNG$ next to the virus scanning policy you want to edit.

3. Refer to Adding a Virus Scanning Policy section in this chapter, for a description of the fields, which can be edited.

4. Complete new policy setup by clicking on Save Settings.

6.4.3

Disabling a Virus Scanning Policy

To disable a virus scanning policy:

1. Click on WebSecurity Edition ► Virus Scanning Policies from the navigation bar.

2. Uncheck the checkbox in the Enabled column for the policy you want to disable.

3. Complete disabling a virus scanning policy by clicking on Save Settings.

6.4.4

Enabling a Virus Scanning Policy

To enable a virus scanning policy:

1. Click on WebSecurity Edition ► Virus Scanning Policies from the navigation bar.

2. Check the checkbox in the Enabled column for the policy you want to enable.

3. Complete enabling a download policy by clicking on Save Settings.

6.4.5

Delete a Virus Scanning Policy

To delete a Virus Scanning Policy:

1. Click on WebSecurity Edition ► Virus Scanning Policies from the navigation bar.

2. Click on the delete icon

next to the policy you want to delete.

3. Complete deleting a virus scanning policy by clicking on Save Settings

6.4.6

Default Virus Scanning Policy

GFI WebMonitor WebSecurity Edition ships with a default virus scanning policy, which is configured to apply to all users. The policy name is listed as Default Virus Scanning Policy.

This policy can be edited, however it cannot be disabled or deleted. If you want to edit the default policy, refer to the Editing a Virus Scanning Policy section in this chapter for information related to editing virus-scanning policies.

NOTE: Any user-created virus scanning policy takes precedence over the default virus scanning policy.

NOTE: Certain fields in the default policy cannot be edited. These include Policy Name, Policy Description and fields in the Applies To tab.