ARW 针对已清除误报的警报
适用于
- ONTAP 9
- 勒索软件防护 (ARP/ARW)
- 事件消息系统 (EMS)
问题描述
EMS 上已被标记为误报的扩展的 ARW 警报:
[cluster-01: svc_queue_thread: callhome.arw.activity.seen:alert]: Call home message for POSSIBLE RANSOMWARE ACTIVITY
[cluster-01: svc_queue_thread: callhome.arw.activity.seen:alert]: Call home message for POSSIBLE RANSOMWARE ACTIVITY