What are the differences between Symantec Endpoint Protection's (SEP) Auto-Protect settings "Scan when a file is accessed or modified" and "Scan when a file is modified"?
Scan when a file is accessed or modified
Choosing this option causes Auto-Protect to scan files when they are written, opened, moved, copied, or run. Use this option for more complete file system protection. This option might affect performance because Auto-Protect scans files during all types of file operations.
Scan when a file is modified
Choosing this option causes Auto-Protect to scan files when they are written, modified, or copied.
Note: If a threat is moved within the same volume or renamed when Auto-Protect is configured to scan on modify, the threat will not be detected.
Use this option for slightly faster performance, because Auto-Protect scans files only when they are written, modified, or copied.
Configuring these settings:
It is possible to choose the desired Auto-Protect behavior by following these steps:
Login to the Symantec Endpoint Protection Manager (SEPM)
Click Policies > Virus and Spyware Protection
Right-click your Virus and Spyware Protection policy and click Edit
Click Auto-Protect > Advanced Scanning and Monitoring...
Select the desired Auto-Protect behavior
Imported Document ID: TECH197809
Subscribing will provide email updates when this Article is updated. Login is required.