Targeted Threat Protection - Attachment Protect Dashboard

Document created by user.oxriBaJeN4 Employee on Aug 18, 2016Last modified by user.oxriBaJeN4 Employee on Apr 2, 2019
Version 9Show Document
  • View in full screen mode

TTP Attachment Protect Dashboard

The Targeted Threat Protection - Attachment Protect Dashboard displays a graphical summary of:

  • Attachments sent to the sandbox over the last 30 days.
  • The top ten unsafe files by recipient.
  • The top ten unsafe files by name.
  • The last ten unsafe attachments.

If you select the items in the series key of the Sandboxed Attachments per Day graph, the graph's filters change accordingly.

Accessing the Dashboard

 

To access the dashboard:

  1. Log on to the Administration Console.
  2. Click on the Administration toolbar button. A menu drop down is displayed.
  3. Click on the Services | Attachment Protection menu item.

 

Displaying the Unsafe Files Log

 

To display the Targeted Threat Protection - Attachment Protect unsafe files log:

  1. Click the Unsafe Files Log button. A list of last 10 unsafe files is displayed with their details.
    Click the View All link in the top right hand corner of the view to display all unsafe files.
  2. Click the Go Back button to return to the Targeted Threat Protection - Attachment Protect Dashboard.

 

Viewing Released Sandbox Attachments

 

Attachment Protect LogsWhen you release an attachment from the sandbox, once it has passed inspection and is found safe, the email is sent to the recipient. You can verify that the recipient received it via the Attachment Protect dashboard.

 

To confirm that a user received an attachment requested from the sandbox:

  1. Log on to the Administration Console.
  2. Click on the Administration toolbar button. A menu drop down is displayed.
  3. Click on the Services | Attachment Protection menu item. The dashboard displays.
  4. Click on the Logs drop down menu.
  5. Select the Attachment Protect Logs menu item.
  6. The attachment release log displays, with "User Release" shown under the Action column.

User Release

 

Additional Considerations

 

  • The Attachment Protect Logs report sandboxed attachments only. Once the recipient requests the release of the attachment, or if you have configured "Pre-emptive" sandboxing (where every attachment is sandboxed before being sent to the recipient), you will see the release entries in the log.
  • If you are using the "Dynamic" or "Safe-File with On-Demand Sandbox" setting, and the recipient does not request the original file, then you will not see a log entry. This is because the attachment is not sandboxed unless the recipient requests the original file.

Attachments

    Outcomes