Created on 06-17-2019 07:05 AM Edited on 11-23-2021 07:49 AM By Anonymous
Description
When compliance check is configured in System> Advanced >Compliance, it is normal to see error message of “Check Archive scanning enabled for AV scan” in the compliance logs.
Solution
The error message is due to no block for unexpected archive such as encrypted, corrupted and etc.
AV profile may be enabled to scan this with using the following command:
config antivirus profile
edit <AV_profile>
config http
set options scan
set archive-block encrypted corrupted multipart nested mailbomb unhandled
end
end
Note: Please do note that this AV profile needed to be used on any of the policy and please do not forget to re-run the compliance test again to confirm the result.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.