Cisco Cisco Web Security Appliance S670 User Guide
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
14-10
AsyncOS 10.0 for Cisco Web Security Appliances User Guide
Chapter 14 File Reputation Filtering and File Analysis
Configuring File Reputation and Analysis Features
Note
Do not change any other settings in this section without guidance from Cisco support.
Step 7
If you will use the cloud service for file analysis, expand the Advanced Settings for File Analysis panel
and adjust the following options as needed
and adjust the following options as needed
Step 8
Submit and commit your changes.
Heartbeat Interval
The frequency, in minutes, with which to ping for
retrospective events.
retrospective events.
Reputation Threshold
The upper limit for acceptable file reputation scores.
Scores above this threshold indicate the file is infected.
Scores above this threshold indicate the file is infected.
•
Use value from Cloud Service (60)
•
Enter Custom Value – defaults to 60.
Query Timeout
The number of elapsed seconds before the reputation query
times out.
times out.
Processing Timeout
The number of elapsed seconds before the file processing
times out.
times out.
File Reputation Client ID
The client ID for this appliance on the File Reputation
server (read-only).
server (read-only).
Option
Description
Option
Description
File Analysis Server URL
Choose either: the name (URL) of an external cloud server,
or Private analysis cloud.
or Private analysis cloud.
If specifying an external cloud server, choose the server
that is physically nearest to your appliance.Newly available
servers will be added to this list periodically using standard
update processes.
that is physically nearest to your appliance.Newly available
servers will be added to this list periodically using standard
update processes.
Choose Private analysis cloud to use an on-premises
Cisco AMP Threat Grid appliance for file analysis, and
provide the following:
Cisco AMP Threat Grid appliance for file analysis, and
provide the following:
•
Server – The URL of the on-premises private analysis
cloud server.
cloud server.
•
Certificate Authority – Choose either Use Cisco
Default Certificate Authority, or Use Uploaded
Certificate Authority.
Default Certificate Authority, or Use Uploaded
Certificate Authority.
If you choose Use Uploaded Certificate Authority,
click Browse to upload a valid certificate file for
encrypted communications between this appliance and
your private cloud appliance. This must be the same
certificate used by the private cloud server.
click Browse to upload a valid certificate file for
encrypted communications between this appliance and
your private cloud appliance. This must be the same
certificate used by the private cloud server.
File Analysis Client ID
The client ID for this appliance on the File Analysis server
(read-only).
(read-only).