3.4 Setup post actions for remediation

A post action represents an operation that happens automatically after the file is processed. For now, the available options are to add tags to a file (only for Amazon S3) and to sanitize files by making use of OPSWAT’s Deep CDR technology.

Enable file tagging for S3 storage

  1. From the left-side navigation menu, go to Storage units

  2. Select the storage for which you wish to enable file tagging

  3. Click on Remediation actions in the actions dropdown

  4. Toggle File tagging from the Remediation Actions window
    images/download/attachments/1997153/image-20200526-144838.png images/download/attachments/1997153/image-20200526-145216.png

The post/remediation action adds the following tag names and respective values:

Name

Value

Description

MetaDefenderResult

Allowed / Blocked

The final result of the processing

MetaDefenderFileId

5e7e15f132efdd0006b0e132

A unique file identifier that can be used for further REST API queries

MetaDefenderAnalysisTimestamp

2020-03-28T21:43:40.1500000Z

Date and time in UTC format when file processing has started

Example of file tagging output in S3 browser

images/download/attachments/1997153/image_%281%29.png

Deep CDR

Turning the File Sanitization feature on creates a safer version of the file by stripping it of potentially harmful content. This is done using OPSWAT’s Deep Content Disarm and Reconstruction technology.

To learn more about how to configure Deep CDR, please check the Deep CDR user guide.

Enable Deep CDR

  1. From the left-side navigation menu, go to Storage units

  2. Select the storage for which you wish to enable file tagging

  3. Click on Remediation actions in the actions dropdown

  4. Go to Deep CDR tab in the Remediation Actions menu

  5. Toggle File sanitization

  6. Choose how the original file should be treated after sanitization by selecting one of the three available options

    1. Keep original file - the original file will be retained as is

    2. Encrypt original file - the original file will be encrypted and retained as a backup. This is useful because later you could decrypt it and revert to the original file if needed

    3. Delete original file - the original file will be deleted and only the sanitized version will be available to users (NOTE: You will not be able to revert to the original file anymore)

images/download/attachments/1997153/image-20200526-1448380.png images/download/attachments/1997153/image-20200526-150102.png

Find out more about OPSWAT’s Deep CDR technology by navigating to the following link:

https://www.opswat.com/technologies/data-sanitization

Delete blocked files

Deleting blocked files automatically is coming soon.

And more…

Is there something you would like to happen as a post action but you don’t see it here? Let us know and we might be able to add it.