OnAccessContainerScanAction

Action to be performed on a container when an infected object is detected.

This setting is available when using the application under a license that supports this function.

File Threat Protection task settings are used when scanning objects inside a container.

StopContainerIfFailed (default value) — Stop the container if an infected object cannot be disinfected or deleted. If this value is specified, the action performed on the container also depends on the ActionOnThreat setting of the File Threat Protection task. If ActionOnThreat is set to DisinfectDeleteIfNotPossible and the application cannot disinfect or delete the infected object while carrying out the action, the container is stopped.

StopContainer — Stop the container when an infected object is detected.

Skip — Do not perform any action on containers when an infected object is detected.

UseDocker

Use the Docker environment.

Yes (default value) — Use the Docker environment.

No — Do not use the Docker environment.

DockerSocket

Docker socket path or URI (Universal Resource Identifier).

Default value: /var/run/docker.sock.

UseCrio

Use the CRI-O environment.

Yes (default value) — Use the CRI-O environment.

No — Do not use the CRI-O environment.

CrioConfigFilePath

Path to the CRI-O configuration file.

Default value: /etc/crio/crio.conf.

UsePodman

Use the Podman utility.

Yes (default value) — Use the Podman utility.

No — Do not use the Podman utility.

PodmanBinaryPath

Path to the Podman utility executable file.

Default value: /usr/bin/podman.

PodmanRootFolder

Path to the root directory of the container storage.

Default value: /var/lib/containers/storage.

UseRunc

Use the runc utility.

Yes (default value) — Use the runc utility.

No: do not use the runc utility.

RuncBinaryPath

Path to the runc utility executable file.

Default value: /usr/bin/runc.

RuncRootFolder

Path to the root directory of the container state storage.

Default value: /run/runc.