cancel
Showing results for 
Search instead for 
Did you mean: 

How to force alert email whenever virus is detected in agent?

Jump to solution

Hi, I am using ePO 5.9 with Endpoint Protection for Linux. As i set the automatic responses for virus detection, i found the alert email will be received only after agent-server-communications(be default 60-min). Is there any method to force agent to touch server whenever virus is detected? 

Best regards,

Steven  

2 Solutions

Accepted Solutions

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

Have you got the "Enable priority event forwarding" enabled within you Agent policy under the Events tab?

If so do you also have "Forward events with a priority equal or greater than" set to Major

Regards

Steve

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

Dear schmiewliski,
Finally solved becoz i find the threat event is labelled as "Information" for the eicar test file so it does not trigger the priority event forwarding. As i change from major to infromation for testing, it works. Thx!

Best regards,

Steven3.png

5 Replies

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

Have you got the "Enable priority event forwarding" enabled within you Agent policy under the Events tab?

If so do you also have "Forward events with a priority equal or greater than" set to Major

Regards

Steve

Highlighted
McAfee Employee jappell
McAfee Employee
Report Inappropriate Content
Message 3 of 6

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

This might give you some ideas of how to solve the issue you requested a solution for. The process has been useful for others with similar questions.

https://community.mcafee.com/t5/Documents/How-To-Series-10-EPO-5-3-Detecting-EICAR-with-a-Stinger-Au...

 

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

Dear ja2013,

Thanks for your information. But as i read the article, i cannot find the related steps to force the communications. Would you please help elaborate a little more? Thanks.

Best regards,

Steven

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

By default, the priority event forwarding is set as you mentioned. But as i tested with eicar file, the event is still received in the next agent-server-communications instead of the mins. So i wonder if the result related to eicar...

Best regards,

Steven

1.png2.png

Re: How to force alert email whenever virus is detected in agent?

Jump to solution

Dear schmiewliski,
Finally solved becoz i find the threat event is labelled as "Information" for the eicar test file so it does not trigger the priority event forwarding. As i change from major to infromation for testing, it works. Thx!

Best regards,

Steven3.png

More McAfee Tools to Help You

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community