Configure malware protection

You need to set up your system to protect your network from malicious software by following a series of configuration steps.

Procedure

Step 1	Plan and prepare for malware protection
Step 2	Configure file policies
Step 3	Add file policies to your access control configuration
Step 4	Configure network discovery policies to associate file and malware events with hosts on your network. (Do not simply turn on network discovery; you must configure it to discover hosts on your network to build a network map of your organization.) See Network Discovery Policies and subtopics.
Step 5	Deploy policies to managed devices. See Deploy Configuration Changes.
Step 6	Test your system to be sure it is processing malicious files as you expect it to.
Step 7	Verify and monitor malware protection

(Optional) To further enhance detection of malware in your network, deploy and integrate Cisco's Secure Endpoint product. Refer to (Optional) Malware protection with Secure Endpoint and subtopics.