Secure Mobile Access 100 10.2 Administration Guide

Capture ATP Integration Overview

Capture Advanced Threat Protection (Capture ATP) is a cloud-based service that analyzes various types of content for malicious behavior. Capture Advanced Threat Protection (Capture ATP) helps Secure Mobile Access (SMA) identify whether a file is malicious by transmitting the file to the cloud where the SonicWall Capture ATP service analyzes the file to determine if it contains a virus or other malicious elements. Capture ATP then sends the results to the SMA. The analysis and reporting are done in real time while the file is being processed by the SMA.

All files are sent to the Capture ATP cloud over an encrypted connection. Files are analyzed and deleted within minutes of a verdict being determined unless a file is found to be malicious. Malicious files are submitted through an encrypted HTTPS connection to the SonicWall threat research team for further analysis and to harvest threat information. Files are not transferred to any other location for analysis. Malicious files are deleted after harvesting threat information within 30 days of receipt. Capture ATP provides a file analysis report (threat report) with detailed threat behavior information.

The administrator can modify Capture ATP settings at the user level, group level, and global level.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.