Retrieve a Vscan On-Access policy

vserver vscan on-access-policy show
vserver vscan on-access-policy file-ext-to-include show
vserver vscan on-access-policy file-ext-to-exclude show
vserver vscan on-access-policy paths-to-exclude show

Learn more

DOC /protocols/vscan/{svm.uuid}/on-access-policies

Parameters

Name	Type	In	Required	Description
mandatory	boolean	query	False	Filter by mandatory
scope.exclude_extensions	string	query	False	Filter by scope.exclude_extensions
scope.scan_without_extension	boolean	query	False	Filter by scope.scan_without_extension
scope.only_execute_access	boolean	query	False	Filter by scope.only_execute_access
scope.include_extensions	string	query	False	Filter by scope.include_extensions
scope.exclude_paths	string	query	False	Filter by scope.exclude_paths maxLength: 255 minLength: 1
scope.scan_readonly_volumes	boolean	query	False	Filter by scope.scan_readonly_volumes
scope.max_file_size	integer	query	False	Filter by scope.max_file_size Max value: 1099511627776 Min value: 1024
name	string	query	False	Filter by name maxLength: 256 minLength: 1
enabled	boolean	query	False	Filter by enabled
svm.uuid	string	path	True	UUID of the SVM to which this object belongs.
fields	array[string]	query	False	Specify the fields to return.
max_records	integer	query	False	Limit the number of records returned.
return_records	boolean	query	False	The default is true for GET calls. When set to false, only the number of records is returned. Default value: 1
return_timeout	integer	query	False	The number of seconds to allow the call to execute before returning. When iterating over a collection, the default is 15 seconds. ONTAP returns earlier if either max records or the end of the collection is reached. Max value: 120 Min value: 0 Default value: 1
order_by	array[string]	query	False	Order results by specified fields and optional [asc

Name

Type

In

Required

Description

mandatory

boolean

query

False

Filter by mandatory

scope.exclude_extensions

string

query

False

Filter by scope.exclude_extensions

scope.scan_without_extension

boolean

query

False

Filter by scope.scan_without_extension

scope.only_execute_access

boolean

query

False

Filter by scope.only_execute_access

scope.include_extensions

string

query

False

Filter by scope.include_extensions

scope.exclude_paths

string

query

False

Filter by scope.exclude_paths

maxLength: 255
minLength: 1

scope.scan_readonly_volumes

boolean

query

False

Filter by scope.scan_readonly_volumes

scope.max_file_size

integer

query

False

Filter by scope.max_file_size

Max value: 1099511627776
Min value: 1024

name

string

query

False

Filter by name

maxLength: 256
minLength: 1

enabled

boolean

query

False

Filter by enabled

svm.uuid

string

path

True

UUID of the SVM to which this object belongs.

fields

array[string]

query

False

Specify the fields to return.

max_records

integer

query

False

Limit the number of records returned.

return_records

boolean

query

False

The default is true for GET calls. When set to false, only the number of records is returned.

Default value: 1

return_timeout

integer

query

False

The number of seconds to allow the call to execute before returning. When iterating over a collection, the default is 15 seconds. ONTAP returns earlier if either max records or the end of the collection is reached.

Max value: 120
Min value: 0
Default value: 1

order_by

array[string]

query

False

Order results by specified fields and optional [asc

Response

Status: 200, Ok

Name	Type	Description
_links	_links
num_records	integer	Number of records
records	array[vscan_on_access]

Name

Type

Description

_links

num_records

integer

Number of records

records

array[vscan_on_access]

Example response

{
  "_links": {
    "next": {
      "href": "/api/resourcelink"
    },
    "self": {
      "href": "/api/resourcelink"
    }
  },
  "num_records": 1,
  "records": [
    {
      "name": "on-access-test",
      "scope": {
        "exclude_extensions": [
          "mp*",
          "txt"
        ],
        "exclude_paths": [
          "\\dir1\\dir2\\name",
          "\\vol\\a b",
          "\\vol\\a,b\\"
        ],
        "include_extensions": [
          "mp*",
          "txt"
        ],
        "max_file_size": 2147483648
      }
    }
  ]
}

Error

Status: Default, Error

Name	Type	Description
error	error

Name

Type

Description

error

Example error

{
  "error": {
    "arguments": [
      {
        "code": "string",
        "message": "string"
      }
    ],
    "code": "4",
    "message": "entry doesn't exist",
    "target": "uuid"
  }
}

Definitions

See Definitions

href

Name	Type	Description
href	string

Name

Type

Description

href

string

_links

Name	Type	Description
next	href
self	href

Name

Type

Description

self

href

scope

Name	Type	Description
exclude_extensions	array[string]	List of file extensions for which scanning is not performed.
exclude_paths	array[string]	List of file paths for which scanning must not be performed.
include_extensions	array[string]	List of file extensions to be scanned.
max_file_size	integer	Maximum file size, in bytes, allowed for scanning.
only_execute_access	boolean	Scan only files opened with execute-access.
scan_readonly_volumes	boolean	Specifies whether or not read-only volume can be scanned.
scan_without_extension	boolean	Specifies whether or not files without any extension can be scanned.

Name

Type

Description

exclude_extensions

array[string]

List of file extensions for which scanning is not performed.

exclude_paths

array[string]

List of file paths for which scanning must not be performed.

include_extensions

array[string]

List of file extensions to be scanned.

max_file_size

integer

Maximum file size, in bytes, allowed for scanning.

only_execute_access

boolean

Scan only files opened with execute-access.

scan_readonly_volumes

boolean

Specifies whether or not read-only volume can be scanned.

scan_without_extension

boolean

Specifies whether or not files without any extension can be scanned.

vscan_on_access

An On-Access policy that defines the scope of an On-Access scan. Use On-Access scanning to check for viruses when clients open, read, rename, or close files over CIFS. By default, ONTAP creates an On-Access policy named "default_CIFS" and enables it for all the SVMs in a cluster.

Name	Type	Description
enabled	boolean	Status of the On-Access Vscan policy
mandatory	boolean	Specifies if scanning is mandatory. File access is denied if there are no external virus-scanning servers available for virus scanning.
name	string	On-Access policy ame
scope	scope

Name

Type

Description

enabled

boolean

Status of the On-Access Vscan policy

mandatory

boolean

Specifies if scanning is mandatory. File access is denied if there are no external virus-scanning servers available for virus scanning.

name

string

On-Access policy ame

scope

error_arguments

Name	Type	Description
code	string	Argument code
message	string	Message argument

Name

Type

Description

code

string

Argument code

message

string

Message argument

error

Name	Type	Description
arguments	array[error_arguments]	Message arguments
code	string	Error code
message	string	Error message
target	string	The target parameter that caused the error.

Name

Type

Description

arguments

array[error_arguments]

Message arguments

code

string

Error code

message

string

Error message

target

string

The target parameter that caused the error.

Retrieve a Vscan On-Access policy

Creating your file...

Related ONTAP commands

Learn more

Parameters

Response

Error

Definitions