Escan/english/escan11/eScan Management Console/Outbreak Notifications: Difference between revisions

From eScan Wiki
Jump to navigation Jump to search
imported>Webmktg
imported>TechContent
Line 19: Line 19:
__TOC__
__TOC__
<br>
<br>
==<B><font size=5 color=#24B200>Outbreak Notifications</font></B>==
<h1 style='color:#556B2F;font-size:24.0pt;font-family:"Open Sans"'>Notifications</h1>
You can configure settings for sending notification when Virus count exceeds the limit defined by you. It can be done using the following simple steps –.
<br><br>
<I><B><font size=4 color=#24B200>User Interface</font></B></I>
:::The Outbreak Notifications page is displayed when you click Outbreak Notification in the navigation bar. This page displays the settings for controlling the number of times eScan should send e-mail alerts during the specified number of days.
<I><B><font size=4 color=#24B200>Configuring Outbreak Notification Settings</font></B></I>
:::You can use the Outbreak Notifications page to configure the frequency of outbreak alert notifications. To enable alerts, you should ensure that the Send notification for viruses detected exceed the following number within the shown time check box is enabled. You can then specify the number of times the eScan Server should send alerts for the specified number of days.


:::'''The steps to configure the outbreak notification settings are as follows:'''
<p style='font-size:11.0pt;font-family:"Open Sans"'>This module lets you configure notifications for different actions/incidents that occur on the server. The Notifications module consists following submodules:</p>


::::::::::'''1.'''  Click Outbreak Notifications in the Navigation panel of eScan Management Console.  
<ul >
::::::::::'''2.'''  Define the criteria for Outbreak Alert and Notification settings in the respective fields
<li style='font-size:11.0pt;font-family:"Open Sans"'>Outbreak Alert</li>
::::::::::::present on the interface and click Save.  
<li style='font-size:11.0pt;font-family:"Open Sans"'>Event Alert</li>
::::::::::'''3.'''  Settings will be saved and notification mails will be sent to the defined recipients
<li style='font-size:11.0pt;font-family:"Open Sans"'>Unlicensed Move Alert</li>
::::::::::::whenever the Virus count exceeds the defined Limit.
<li style='font-size:11.0pt;font-family:"Open Sans"'>New Computer Alert</li>
::::::::::'''4.''' To save the settings, click Save.
<li style='font-size:11.0pt;font-family:"Open Sans"'>Configure SIEM</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>SMTP Settings</li>
</ul>
 
<h2 style='color:#556B2F;font-size:22.0pt;font-family:"Open Sans"'>Outbreak Alert</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>If the virus count exceeds the limits set by you, an outbreak email notification will be sent to the recipient.
<br>
To set an outbreak alert, follow the steps given below:</p>
<ol>
<li style='font-size:11.0pt;font-family:"Open Sans"'> In the navigation panel, click <b>Notifications</b> &gt; <b>Outbreak Alert</b>.
<br>
Outbreak Notification screen appears.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the checkbox <b>Send notification</b>.</li>
<li cstyle='font-size:11.0pt;font-family:"Open Sans"'>Enter the preferred values in Number and Time Limit field. </li>
  <li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save. </b>Outbreak Alert Settings will be saved.</li>
</ol>
<br>
<table class=MsoNormalTable border=1 cellspacing=0 cellpadding=0
style='background:#DBE5F1;border-collapse:collapse;border:none'>
<tr>
  <td width=49 style='width:36.9pt;border:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt'>
  <p class=MsoNormal align=center style='font-size:11.0pt;font-family:"Open Sans";margin-bottom:0in;text-align:center;
  line-height:112%'><b>NOTE</b></p>
  </td>
  <td width=567 style='width:425.35pt;border:solid windowtext 1.0pt;border-left:
  none;padding:0in 5.4pt 0in 5.4pt'>
  <p style='font-size:11.0pt;font-family:"Open Sans"'>In order to receive notification emails, it is necessary to configure SMTP settings.
<br>
Learn more about SMTP Settings in the <i> <b> SMTP Settings</b></i></p>
  </td>
</tr>
</table>
<br>
<h2 style='color:#556B2F;font-size:22.0pt;font-family:"Open Sans"'>Event Alert</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>This submodule lets you enable email notifications about any event that occurs on the client computers connected to the server.
<br>
To enable the event alert,</p>
 
<ol >
  <li style='font-size:11.0pt;font-family:"Open Sans"'>In the navigation panel, click <b>Notifications</b> &gt; <b>Event Alert</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the check box Enable email alert Notification.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the events from the list for which you prefer an alert.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the required hosts or group.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save.</b>
<br>
The Event Alert Settings will be saved.</li>
 
<h2 style='color:#556B2F;font-size:22.0pt;font-family:"Open Sans"'>Unlicensed Move Alert</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>This submodule lets you enable notification alert when a computer automatically moves to Unlicensed Computers category based on the setting done (under events and computers) for the computer which is not connected to the server for a long time.
<br>
To enable the unlicensed move alert,</p>
 
<ol >
<li style='font-size:11.0pt;font-family:"Open Sans"'>In the navigation panel, click <b>Notifications</b>
    &gt; <b>Unlicensed Move Alert</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the check box <b>Send notification for
    unlicensed computers</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save</b>.
<br>
The Unlicensed Move Alert Settings will be saved.</li>
</ol>
<h2 style='color:#556B2F;font-size:22.0pt;font-family:"Open Sans"'>New Computer Alert</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>This submodule lets eScan send you a notification alert when a new computer is connected to the server within the IP range mentioned under the Managed Computers.
<br>
To enable the new computer alert, follow the steps given below:</p>
 
<ol >
<li style='font-size:11.0pt;font-family:"Open Sans"'>In the navigation panel, click <b>Notifications &gt; New Computer Alert</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the checkbox <b>Send new Computers added notification within the shown time</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Enter the preferred values in Time limit field.</li>
  <li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save</b>.<br>
The New Computer Alert Settings will be saved.</li>
</ol>
 
<h2 style='color:#556B2F;font-size:24.0pt;font-family:"Open Sans"'>Configure SIEM</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>SIEM technology provides real-time management of security events generated for hardware changes and applications installed/uninstalled/upgraded where eScan is installed. eScan is equipped with variety of features that facilitate real-time monitoring, correlating captured events, notifications and console views and provides long-term storage, analysis and reporting of data.
<br>To configure SIEM, follow the steps given below:</p>
 
<ol >
<li style='font-size:11.0pt;font-family:"Open Sans"'>In the navigation panel, click <b>Notification </b>&gt; <b>Configure SIEM</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the <b>Enable event forward to SIEM/SYSLOG Server </b>checkbox.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>After selecting the checkbox, it will enable the rest of the options that can be configured. You can enter the details of the SIEM/SYSLOG Server.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save</b>.<br>
The SIEM settings will be saved.</li>
</ol>
 
<h2 style='color:#556B2F;font-size:22.0pt;font-family:"Open Sans"'>SMTP Settings</h2>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>This submodule lets you configure the SMTP settings for all the email notifications.
<br>
To configure the SMTP settings, follow the steps given below:</p>
 
<ol >
<li style='font-size:11.0pt;font-family:"Open Sans"'>In the navigation panel, click <b>Notifications</b> &gt; <b>SMTP Settings</b>.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Enter all the details.</li>
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click <b>Save</b>.<br>
The SMTP Settings will be saved.</li>
</ol>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'>To test the newly saved settings, click <b>Test</b>.</p>

Revision as of 09:58, 27 April 2021

File:Escan-g.jpg
· eScan  · MailScan  · Technologies   · Technical Info  · Security Awareness  · User Guides


eScan Version 11 (and above) Online Help



Notifications

This module lets you configure notifications for different actions/incidents that occur on the server. The Notifications module consists following submodules:

  • Outbreak Alert
  • Event Alert
  • Unlicensed Move Alert
  • New Computer Alert
  • Configure SIEM
  • SMTP Settings

Outbreak Alert

If the virus count exceeds the limits set by you, an outbreak email notification will be sent to the recipient.
To set an outbreak alert, follow the steps given below:

  1. In the navigation panel, click Notifications > Outbreak Alert.
    Outbreak Notification screen appears.
  2. Select the checkbox Send notification.
  3. Enter the preferred values in Number and Time Limit field.
  4. Click Save. Outbreak Alert Settings will be saved.


NOTE

In order to receive notification emails, it is necessary to configure SMTP settings.
Learn more about SMTP Settings in the SMTP Settings


Event Alert

This submodule lets you enable email notifications about any event that occurs on the client computers connected to the server.
To enable the event alert,

  1. In the navigation panel, click Notifications > Event Alert.
  2. Select the check box Enable email alert Notification.
  3. Select the events from the list for which you prefer an alert.
  4. Select the required hosts or group.
  5. Click Save.
    The Event Alert Settings will be saved.
  6. Unlicensed Move Alert

    This submodule lets you enable notification alert when a computer automatically moves to Unlicensed Computers category based on the setting done (under events and computers) for the computer which is not connected to the server for a long time.
    To enable the unlicensed move alert,

    1. In the navigation panel, click Notifications > Unlicensed Move Alert.
    2. Select the check box Send notification for unlicensed computers.
    3. Click Save.
      The Unlicensed Move Alert Settings will be saved.

    New Computer Alert

    This submodule lets eScan send you a notification alert when a new computer is connected to the server within the IP range mentioned under the Managed Computers.
    To enable the new computer alert, follow the steps given below:

    1. In the navigation panel, click Notifications > New Computer Alert.
    2. Select the checkbox Send new Computers added notification within the shown time.
    3. Enter the preferred values in Time limit field.
    4. Click Save.
      The New Computer Alert Settings will be saved.

    Configure SIEM

    SIEM technology provides real-time management of security events generated for hardware changes and applications installed/uninstalled/upgraded where eScan is installed. eScan is equipped with variety of features that facilitate real-time monitoring, correlating captured events, notifications and console views and provides long-term storage, analysis and reporting of data.
    To configure SIEM, follow the steps given below:

    1. In the navigation panel, click Notification > Configure SIEM.
    2. Select the Enable event forward to SIEM/SYSLOG Server checkbox.
    3. After selecting the checkbox, it will enable the rest of the options that can be configured. You can enter the details of the SIEM/SYSLOG Server.
    4. Click Save.
      The SIEM settings will be saved.

    SMTP Settings

    This submodule lets you configure the SMTP settings for all the email notifications.
    To configure the SMTP settings, follow the steps given below:

    1. In the navigation panel, click Notifications > SMTP Settings.
    2. Enter all the details.
    3. Click Save.
      The SMTP Settings will be saved.

    To test the newly saved settings, click Test.