About the task scan scope and security settings
In the Application Console, the scan scope of the selected On-Demand Scan task is displayed as a list of the protected device file resources that Kaspersky Industrial CyberSecurity for Nodes can control.
The items or nodes are displayed in a list-view mode of the protected device file resources as follows:
The node is included in the scan scope.
The node is excluded from the scan scope.
Security settings
In the selected On-Demand Scan task, the default security settings can be modified by configuring them as common settings for the entire protection or scan scope, or as different settings for different nodes or items in the device's file resource list.
If the same object is included in multiple protection scope entries and these entries have different security levels, the last rule in the list takes priority. For example, consider a protection scope that includes two entries: All hard drives (security level Inform) and *\Users\*\Downloads\* (security level Custom). The application scans hard drives in accordance with the Inform level, except the Downloads folder. The application scans the Downloads folder in accordance with manually specified settings because this entry is the last in the list of the protection scope.
Security settings configured for the selected parent node are automatically applied to all child nodes. The security settings of the parent node are not applied to child nodes that are configured separately.
The settings for a selected scan scope or protection scope can be configured using one of the following methods:
- Select one of three predefined security levels (Maximum performance, Recommended, or Maximum protection).
- Manually change the security settings for the selected nodes or items in the list of the protected device's file resources (the security level changes to Custom).