Threat Grid rate limit exceeded

Davedog — Mon, 30 Aug 2021 14:43:42 GMT

tHow does Threat Grid operate once an organization exceeds its submission rate limits? Does it ignore / no longer inspect files at that point until the 24 hour rolling window resets?

Re: Threat Grid rate limit exceeded

jesutorr@cisco.com — Wed, 01 Sep 2021 03:26:49 GMT

Hi Dave,

Regarding your inquiry, once the sample limit is reached, the manual submissions won't be allowed.

If you have another Cisco product integrated with Threat Grid for example an Email Security Appliance (ESA), if an unknown file is sent for analysis, ThreatGrid will indicate that the file won't be able to upload to File Analysis.

Depending your configuration the ESA will perform different actions, it depends.

You can verify the outcome on that on the message tracking logs.

Cheers,

topic Re: Threat Grid rate limit exceeded in Endpoint Security

Threat Grid rate limit exceeded

Re: Threat Grid rate limit exceeded