Hello, Indeed, the current state of the Linux Security 64 documentation does not really allow anyone to understand how does it work, and master its deployment/use. We encounter the same issue (on CentOS), a manual scanning detects our EICAR test file, whereas the real-time scanning does not detect anything, and therefore does not prevent a user/a process to access this "malicious" file. Even if it is documented, we are still waiting for the fix of "CSLP-3319: Manual scanning cannot be invoked from Policy Manager Console.". It is not OK, not to be able to launch a global scan of our machines from the Policy Manager. M.
... View more