Create an antimalware policy for Symantec Protection Engine

  1. To create an antimalware policy
  2. In the centralized console, go to the
    Policies > Storage Policies
    page.
  3. Click or press the + icon and select
    Create a Policy
    .
  4. In the policy creation page, configure the settings to create a policy.
  5. Click
    Save
    after you complete the configuration.
Policy settings support matrix for Symantec Protection Engine versions
The following tables list the policy settings and the Symantec Protection Engine versions that support those policy settings. 
Antimalware settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Detection Level
(Aggression Level)
Yes
Yes
Yes
Monitoring Level
No
No
Yes
File Insight
Yes
Yes
Yes
Mobile Insight
Yes
Yes
Yes
Disarm (Active Content)
No
No
Yes
File Scan Action
Yes
Yes
Yes
Deleted File Notification Text
No
Yes
Yes
Access Denied Message
No
Yes
Yes
Infected File Notification Text
No
Yes
Yes
Total Threat Found Notification Text
No
Yes
Yes
Log and Tag settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Logging Settings
  • SPE Local Logging Level
  • Number of Local Log Files To Retain
  • Windows Event Viewer Logging Level
  • Linux SysLog Logging Level
  • Cloud Console Logging Level
  • Cloud Event Post Interval (Seconds)
  • Cloud Statistics Event Post Interval (Seconds)
  • Cloud Resource Consumption Event Post Interval (Seconds))
  • Number of Resource Consumption Log Files to Retain
No
Yes
Yes
SNMP (Alerting) Logging Settings
  • SNMP Logging Level
  • SNMP Community
  • SNMP Primary Server Address
  • SNMP Primary Server Port
  • SNMP Secondary Server Address
  • SNMP Secondary Server Port
No
Yes
Yes
SMTP (Alerting) Logging Settings
  • SMTP Logging Level
  • SMTP Primary Server Address
  • SMTP Secondary Server Address
  • SMTP Domain Name
  • SMTP Alert Recipient Email Addresses
No
Yes
Yes
Archive Handling settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Maximum Extraction Depth
Yes
Yes
Yes
Maximum Extraction File Count
Yes
Yes
Yes
Maximum Extraction Size (MBs)
No
Yes
Yes
Maximum Cumulative Extraction Size (bytes)
Yes
Yes
Yes
Encrypted File Archives
Yes
Yes
Yes
Encrypted File Archives
Yes
Yes
Yes
Action
Yes
Yes
Yes
Encrypted File Deleted Notification Text
No
Yes
Yes
Malformed File Archives
Yes
Yes
Yes
Action
Yes
Yes
Yes
Deny settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Deny Files by File Name
(File Based Filter)
  • Enable
  • List of file names
  • Action
  • Denied File by Name Deleted Notification Text
Yes
Yes
Yes
Deny Files by File Hash
  • Enable
  • List of file hashes
  • Action
  • Denied File by Hash Deleted Notification Text
No
No
Yes
Deny Files by True Type
(True type file filtering)
  • Enable
  • List of True Types
Yes
Yes
Yes
File Size Threshold
  • Maximum File Size (bytes)
Yes
Yes
Yes
Allow settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Allow
(Exclusion Rules)
Yes
Yes
Yes
Enable Exclusion Policy
Yes
Yes
Yes
File extension based exclusion
Yes
Yes
Yes
True type based exclusion
Yes
Yes
Yes
File path based exclusion
Yes
Yes
Yes
File Hash (SHA256) based exclusion
Yes
Yes
Yes
Size threshold based exclusion (bytes)
Yes
Yes
Yes
System settings in a policy
Settings
SPE 8.0, 8.1
SPE 8.0.1
SPE 8.2
Maximum In-memory File System Size (MBs)
No
Yes
Yes
Maximum In-memory Scan Cache Size (MBs)
No
No
Yes
Filer Performance Threshold (Bytes)
No
Yes
Yes
File Copy Performance Threshold (Bytes)
No
No
Yes
Maximum File Size for SHA Computation (bytes)
No
No
Yes
Quarantine Settings
  • Enable Quarantine Server Settings
  • Quarantine Type – Central Quarantine Server
  • Server Name
  • Port
Yes
Yes
Yes
Quarantine Settings
  • Enable Quarantine Server Settings
  • Quarantine Type – Amazon Web Service (AWS S3)
  • Region
  • Bucket Name
  • Relative Path
No
No
No
LiveUpdate Settings
  • LiveUpdate Server settings
  • LiveUpdate Schedule Settings
  • Live Update Time Interval Settings
Yes
Yes
Yes