CSA Event Message about CSA AV Scan

Unanswered Question
Oct 15th, 2008
User Badges:

Hello, I am getting a lot of information messages that is generated when my CA eTrust A/V does a daily scan of a server that CSA 6.0 is installed on.

The message regarding rule # 589 says inpart... "will set file trust status as Untrusted (until CSA AV scan) if the attempt is allowed. No events will be logged when the rule is triggered."

Since I use CA eTrust how can/do I let the CSA know the scan was done and it is OK and there is no need to generate this event (roughly 4000 events per scan)


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
tsteger1 Mon, 10/20/2008 - 08:06
User Badges:
  • Red, 2250 points or more

You need to create a comparable rule that sets the CA eTrust AV scan as trusted and either add it to the module that triggered the rule or to an exception module.

You should be able to use the wizard to create it and then check it to ensure it isn't too broad.



This Discussion