.svg?sv=2022-11-02&spr=https&st=2024-11-22T07%3A09%3A06Z&se=2024-11-22T07%3A19%3A06Z&sr=c&sp=r&sig=YoEwQRF7K%2B%2BvQWDX1%2BM1YbTNc8t%2FGZ3ydnMxCRyjADs%3D){kind=logo}
Detections
- 10 Nov 2022
- 1 Minute to read
- Contributors
- Print
- PDF
Detections
- Updated on 10 Nov 2022
- 1 Minute to read
- Contributors
- Print
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
In this article, we will explain Detections, another key function of Skylight interceptor.
Overview
Detections are modules that analyse traffic and generate alerts when suspicious traffic activity is recognized. You can easily control all detections in Interceptor and enable or disable them as needed.
Accessing Detections
► To access detections:
- Go to Settings ► Security ► Detections
Enabling Network Detections
► To enable network detections:
- Go to Settings ► Security ► Detections
- Enable or disable network discovery.
Accessing Edit Policy
► To edit a policy:
- Go to Settings ► Security ► Detections
- Select the Policy you wish to edit.
An Edit Policy dialog will appear.
This dialog will also include a non-editable short description of the detection as well as an indication of its severity.
Note: There are no limits for detections so you should be careful with parameters.
Editing Detection Allowlists
► To edit detection allowlists:
- Go to Settings ► Security ► Detections
- Select a detection from the policy name list.
- From the Edit Policy menu, you can add an allowlist. This will allow you to select from the field pull-down menu, either: Source IPs or Destination IPs, along with other specific parameters relating to a specified policy. For example, Public suffix, as shown below.
© 2024 Cisco and/or its affiliates. All rights reserved.
For more information about trademarks, please visit: Cisco trademarks
For more information about legal terms, please visit: Cisco legal terms
For legal information about Accedian Skylight products, please visit: Accedian legal terms and tradmarks
Was this article helpful?