Cisco Cisco Web Security Appliance S670 User Guide

Do not change any other settings in this section without guidance from Cisco support. 

If you will use the cloud service for file analysis, expand the Advanced Settings for File Analysis panel 
and adjust the following options as needed 

Submit and commit your changes.

Heartbeat Interval

The frequency, in minutes, with which to ping for 
retrospective events.

Reputation Threshold

The upper limit for acceptable file reputation scores. 
Scores above this threshold indicate the file is infected.

Use value from Cloud Service (60) 

Enter Custom Value – defaults to 60.

Query Timeout

The number of elapsed seconds before the reputation query 
times out.

Processing Timeout

The number of elapsed seconds before the file processing 
times out.

File Reputation Client ID

The client ID for this appliance on the File Reputation 
server (read-only).

File Analysis Server URL

Choose either: the name (URL) of an external cloud server, 
or Private analysis cloud.

If specifying an external cloud server, choose the server 
that is physically nearest to your appliance.Newly available 
servers will be added to this list periodically using standard 
update processes.

Choose Private analysis cloud to use an on-premises 
Cisco AMP Threat Grid appliance for file analysis, and 
provide the following:

Server – The URL of the on-premises private analysis 
cloud server.

Certificate Authority – Choose either Use Cisco 
Default Certificate Authority, or Use Uploaded 
Certificate Authority.

If you choose Use Uploaded Certificate Authority, 
click Browse to upload a valid certificate file for 
encrypted communications between this appliance and 
your private cloud appliance. This must be the same 
certificate used by the private cloud server.

File Analysis Client ID

The client ID for this appliance on the File Analysis server 
(read-only).