The Umbrella User Guide Developer Hub

Welcome to the Umbrella User Guide developer hub. You'll find comprehensive guides and documentation to help you start working with Umbrella User Guide as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started    

Enable File Inspection for Web Policies

For Web policies, File Inspection uses Cisco's Advanced Malware Protection (AMP) as well as Umbrella's antivirus engines to scan for malicious files. Once inspections are complete, a file is either delivered or the connection is terminated and the user is served the IP of the block page.

Note: You must first enable File Inspection before you can enable Threat Grid Malware Analysis.

Monitor and Review File Inspection

Once you have enabled File Inspection, to monitor and review Umbrella's inspection activities, use the Security Activity and Activity Search reports. For more information, see Review File Inspection Through Reports.

Before You Start — Install a Root Certificate

A root certificate must be installed on all machines. For more information, see Manage Certificates.

Enable File Inspection for a Web Policy

File Inspection can only be enabled through the policy wizard.

  1. Navigate to Policies > Management > Web Policies and click Add or expand an existing policy.
  2. Under What Would You Like to Do, select File Analysis.
  1. Navigate through the wizard to HTTPS HTTPS and enable HTTPS Inspection.
  1. Continue through the policy wizard to the File Analysis step and enable File Inspection.
  1. Complete the wizard and click Save.
    If you're testing, ensure that the policy with file inspection enabled in it is at or near the top of the policy list so that the policy takes precedence.

Manage File Analysis < Enable File Inspection > Test File Analysis

Updated 7 months ago

Enable File Inspection for Web Policies


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.