Руководство Пользователя для Cisco Cisco Content Security Management Appliance M160

Ensure that you are receiving System alerts at Critical level. 

The first time you attempt to access File Analysis report details from the Threat Grid appliance, wait a 
few minutes and you will receive an alert that includes a link. 

If you do not receive this alert, go to Management Appliance > System Administration > Alerts and 
click View Top Alerts. 

Click the link in the alert message. 

If necessary, sign in to your Cisco AMP Threat Grid Appliance. 

Activate your management appliance account. 

For any additional requirements, see the Release Notes for your Security Management appliance release, 
available from 

Because filenames can easily be changed, the appliance generates an identifier for each file using a 
Secure Hash Algorithm (SHA-256). If an appliance processes the same file with different names, all 
instances are recognized as the same SHA-256. If multiple appliances process the same file, all instances 
of the file have the same SHA-256 identifier. 

In most reports, files are listed by their SHA-256 value (in an abbreviated format). To identify the 
filenames associated with a malware instance in your organization, select Reporting > Advanced 
Malware Protection and click an SHA-256 link in the table. The details page shows associated filenames.