Managing McAfee Endpoint Security for Linux Define or change the software configuration, or view information about the software. isecav command-line Help isecav is a command-line tool to execute tasks, and configure McAfee Endpoint Security for Linux Threat Prevention settings. Access the IsecTP Help Access the IsecTP help from the command line to view configurations or to execute tasks. Define risk category for a process You can add processes to a process category, change the risk category for a process, or remove process from the category. Manage on-access scanning The on-access scan runs in the background and actively scans your computer system constantly for viruses and other malicious threats. You can set the on-access scan options at the organization or profile level. Manage on-demand scanningCreate, configure, schedule, and manage on-demand scan tasks. Protecting Linux endpoints using McAfee GTI McAfee GTI uses heuristics file reputation to check for suspicious files through on-access scanning and on-demand scanning. Configure the DAT update schedule Configure the DAT update task to run immediately, at a scheduled time, or at regular intervals. Configure the Product log settings Enable or disable the Product log and define maximum size for the log file. Configure the software to send events to SYSLOG Configure the software to log the information to SYSLOG in addition to storing the information in the product log. Configure the quarantine directory Specify the directory where you want to store the quarantined items. Access Protection Access Protection allows you to define access control policies and settings for processes, files, and directories. By restricting access to specific files and directories, you can protect your systems from vulnerabilities.