topic Cluster mode: vscan settings : On-access-policy in ONTAP Discussions https://community.netapp.com/t5/ONTAP-Discussions/Cluster-mode-vscan-settings-On-access-policy/m-p/13981#M3224 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I am trying to find out the what would be the right vscan setting for my cluster mode environment.</P><P></P><P>The settings I am specifically after are "Filters" options under&nbsp; "On-access-policy". By default it is set to mandatory. But the negative with that is if the AV scanners drops out then the end user would get a access denied error. So I was trying to see if "scan-execute-access" would the right one. </P><P></P><P>The man page of that options says "Scan only files opened with execute-access (CIFS only)". My understanding is that there would be a scan request only when a user open the file (with him having right access ofcourse). </P><P></P><P>Does this include a scan on the execution and writing of the file as well?</P><P></P><P>Also would there be a scan request if the same file is opened by a user with only read access?</P><P></P><P>Any detailed information about this would be of great help.</P><P></P><P>Thanks in advance.</P></BODY></HTML> Thu, 05 Jun 2025 05:35:11 GMT KUBER_KATANA1 2025-06-05T05:35:11Z Cluster mode: vscan settings : On-access-policy https://community.netapp.com/t5/ONTAP-Discussions/Cluster-mode-vscan-settings-On-access-policy/m-p/13981#M3224 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I am trying to find out the what would be the right vscan setting for my cluster mode environment.</P><P></P><P>The settings I am specifically after are "Filters" options under&nbsp; "On-access-policy". By default it is set to mandatory. But the negative with that is if the AV scanners drops out then the end user would get a access denied error. So I was trying to see if "scan-execute-access" would the right one. </P><P></P><P>The man page of that options says "Scan only files opened with execute-access (CIFS only)". My understanding is that there would be a scan request only when a user open the file (with him having right access ofcourse). </P><P></P><P>Does this include a scan on the execution and writing of the file as well?</P><P></P><P>Also would there be a scan request if the same file is opened by a user with only read access?</P><P></P><P>Any detailed information about this would be of great help.</P><P></P><P>Thanks in advance.</P></BODY></HTML> Thu, 05 Jun 2025 05:35:11 GMT https://community.netapp.com/t5/ONTAP-Discussions/Cluster-mode-vscan-settings-On-access-policy/m-p/13981#M3224 KUBER_KATANA1 2025-06-05T05:35:11Z