User Guide

Setting Policy for On-Access Scanning

32 McAfee VirusScan TC

Detection Options

To set the Detection options, follow these steps:

1. DeselectInherit to change the product’s current configuration settings.

NOTE:Disabling the Inheritance feature lets you set new policy for

scanning activities for the target (group or computer) that you have

selected inthe console tree.During futureinstallations tocomputersin

other branches of your network, you can leave this checkbox

selected if you want the policies you set now to affect computers

that are in subordinate positions in the Directory tree. See the

ePolicy Orchestrator Administrator’s Guide for a complete

discussion of Inheritance.

2. Select Enable On-Access Scan to enable the options for on-access

scanning. If you do not check this box, the options on this page are

grayed out.

3. Under Scan Files,select circumstances under which you want the

program to scan the files.Your options are:

TIP: If you select both options, any file that you can open and

change will be scanned twice each time it is used—once when it is

read from the disk (outbound) and again when it is written to the

disk (inbound). This is the most comprehensive approach to

scanningbecauseitensuresthatnoinfectionsarewrittentothehard

disk. If an infected file was already on the disk before the anti-virus

software wasinstalled, the scannerwillfindthe viruswhentheuser

takessome action onthe file such as opening,moving, ordeleting it.

If you elect to scan inbound files only, or outbound files only, it is

importantthatallcomputers sharing files beconfigured identically.

Otherwise, an infected file could be copied from a computer that

scans only inbound files to a server that scans only outbound files.

When writing to disk

Files that are written to aharddrive,

or other data storage device.

When reading from disk

Files that are read from aharddrive,

or other data storage device.