Configuring on-demand scan

To configure on-demand scan:

1. Open the Kaspersky Security for Microsoft Office 365 Management Console.
2. In the left part of the page, select the On-demand scan section.
3. Click the Malware scan button.
4. In the Time range subsection, specify the time range for email objects to be included in the scan scope based on their date:
   1. Click the Change button.
   2. Select the start date and the end date for the required time period.
   3. Click the Apply button.
5. In the Action subsection, select the action to be performed by the application when it detects infected objects. The following options are available:
   • Delete and quarantine message. The whole message is deleted from the user mailbox.

     Delete and quarantine infected attachment. If the application detects a threat in the attached file, it removes the infected file only and delivers the rest of the message to the recipient. In this case, the removed attachment is replaced with a text file that informs the user about the action taken by the application and contains the list of infected attachments and those that were deleted as a result of the Anti-Malware scan. If an infected file is detected inside of an archive, the application removes the whole archive.

6. For the Delete and quarantine infected attachment option, you can add a custom tag to the subjects of affected messages and / or customize the file replacement template:
   • To tag the subject of a detected message, select the Tag the subject check box.

     If necessary, change the tag in the entry field under the Tag the subject check box.

   • To customize the replacement file:
     1. Click the Edit replacement file link next to the Delete and quarantine infected attachment label.

        The Replacement file template window opens.

     2. Edit the template contents in the Message text field. For example, the text can include instructions or other information relevant to employees of your organization.
     3. If you want to restore the default template, click the Reset button.
     4. Click Save.
   • In your custom template, you can keep using the variables included in the default template.
     • %DETECTED_FILES%. The list of infected files detected in the message attachment.
     • %REMOVED_ATTACHMENTS%. The list of files actually deleted by the Anti-Malware module as a result of a scan.
7. In the Scan scope subsection, select users and / or Active Directory user groups that will be included in the current scan scope.

   The users and user groups are listed alphabetically; at that, user groups are listed first. By default, the list of users and user groups is arranged by 10 lines per page. You can switch the pages of the list back and forth or change the default number of displayed lines per page at the bottom of the page.

   You can type the user name or user group name in the Search entry field and click the button to find the specific user or user group.

8. In the Notifications subsection, you can request an email notification that will be automatically sent after the scan task is completed. Notifications contain an attached HTML report on the scan results. To request a notification, specify its recipients:
   1. Select the Notify administrators about scan results check box.
   2. In the entry field, type the email addresses of the required recipients.

      To add several recipients, separate their email addresses with a semicolon (for example, user@example.com;user2@example.com;user3@example.com).

   You can specify up to five recipients.

   The notification language corresponds to the language settings configured in the application settings.

9. Click the Run scan button.

The scan task starts. Task progress is displayed in the same section of the Management Console. You can view the scan progress details by clicking the Scan progress link, or force the task to stop by clicking the Stop scan button.

After the task is completed, its details are available for review in the Scan history subsection.

Page top