Cisco Cisco Firepower Management Center 4000
13-21
FireSIGHT System User Guide
Chapter 13 Using Access Control Policies
Configuring Policies
Keep in mind that increasing the file sizes can affect the performance of the system.
To configure advanced access control policy options:
Access:
Admin/Access Admin/Network Admin
Step 1
Select
Policies > Access Control
.
The Access Control page appears.
Step 2
Click the edit icon (
) next to the access control policy you want to configure.
The policy Edit page appears.
Step 3
Select the
Advanced
tab.
Advanced settings for the access control policy appear.
Step 4
Configure the advanced options, as described above.
Step 5
Click
Save
.
You must apply the access control policy for your changes to take effect. For more information, see
Minimum file size
for dynamic
analysis testing
(bytes)
for dynamic
analysis testing
(bytes)
Specify the minimum
file size the system can
submit to the cloud for
dynamic analysis.
file size the system can
submit to the cloud for
dynamic analysis.
6144
(6KB)
6144
(6KB)
-
2097152
(2MB)
This field must be less than or equal to
Maximum file size for dynamic analysis
testing (bytes)
testing (bytes)
and
Do not calculate SHA-256
hash values for files larger than (in bytes)
.
The system checks the cloud for
updates to the minimum file size you
can submit (no more than once a day).
If the new minimum size is larger than
your current value, your current value is
updated to the new minimum, and your
policy is marked out-of-date.
updates to the minimum file size you
can submit (no more than once a day).
If the new minimum size is larger than
your current value, your current value is
updated to the new minimum, and your
policy is marked out-of-date.
Maximum file size
for dynamic
analysis testing
(bytes)
for dynamic
analysis testing
(bytes)
Specify the maximum
file size the system can
submit to the cloud for
dynamic analysis.
file size the system can
submit to the cloud for
dynamic analysis.
1048576
(1MB)
6144
(6KB)
-
2097152
(2MB)
This field must be greater than or equal
to
to
Minimum file size for dynamic analysis
testing (bytes)
, and less than or equal to
Do not calculate SHA-256 hash values for
files larger than (in bytes)
files larger than (in bytes)
.
The system checks the cloud for
updates to the maximum file size you
can submit (no more than once a day).
If the new maximum size is smaller
than your current value, your current
value is updated to the new maximum,
and your policy is marked out-of-date.
updates to the maximum file size you
can submit (no more than once a day).
If the new maximum size is smaller
than your current value, your current
value is updated to the new maximum,
and your policy is marked out-of-date.
Table 13-6
Advanced Access Control File and Malware Detection Options (continued)
Field
Description
Default Value
Range
Notes