How do I configure an email alert message for something logged in the Firepower Management Center?
Solved! Go to Solution.
If you intend to be alerted if a malware is detected in network, then you'd achieve that through correlation
Please clarify, the subject of this question and the body seem to be talking about two different requests.
If you intend to be alerted if a malware is detected in network, then you'd achieve that through correlation
Thanks for the reply. I basically want to be alerted if the file access policy detects a bad file and blocks it. The "action" tab is misleading in the rules of the policy itself. What is the difference between block files and block malware? I just want to know about if the policy did find something and it blocked a file whether is malware or blocked it for other reasons, without manually going to the dashboard.
Thanks for leading me into the right direction. I have created a correlation rule and configured an alert via Policies -> Actions->Alerts then Advance Malware Protection alerts and it worked. Thank you.