IHAC who wants to block some files related to CryptoLocker from ONTAP shares. It seems he can do that with native FPolicy, but they would like to be notified as well. Does anyone know if it's possible to find the block info in any log files and if it can be forwarded in any way?
fpolicy & vscan have the ability to call out to 3rd party applications which are compatible, such as antivirus, change management systems, etc. Internal engine functionality is limited to things like blocking certain extensions, or simple logging.