How to Add an Assured Security - AI Anomaly Detection Task to a Policy

The Assured Security – AI Anomaly Detection task analyzes backup data to detect anomalies, ensure data integrity, and enhance overall data protection. Before you create an Assured Security - AI Anomaly Detection task, make sure to add a plan for the backup task.

This section provides information about how to add an Assured Security - AI Anomaly Detection task to a plan.

Follow these steps:

  1. Log into Cloud Console.
  2. Navigate to Protect > Policies.
  3. Click the name of the policy you want to edit.
  4. In the left pane, click Tasks.
  5. To add a secondary task, click Add Task on the RPS section, and then click the newly added RPS section.
  6. On the What to protect tab, from the Activity Type drop-down list, select Assured Security - AI Anomaly Detection.
  7. On the What to Test tab, do the following:
  8. Specify one of the following:
    • Select Daily, Weekly, or Monthly backups based on your requirements.
    • Note: The available options depend on the schedule type selected for the source backup. For example, if the source backup has only monthly backup scheduled, then only Monthly backup displays.
    • Select the Latest Recovery Points check box.
  9. Under Anomaly Detection Methods, to configure the types of anomalies to detect and set their sensitivity levels, follow these steps:
    1. Select one or both detection methods based on your monitoring requirements:
      • Suspicious Files: This method continuously monitors files for characteristics that indicate malicious behavior, such as unexpected types, naming patterns, or unusual modification behaviors. This option is selected by default.
      • Mass Deletions and Renames: This method detects sudden, large-scale file or directory changes, such as multiple deletions or renames occurring within a short period. This option is selected by default.
    2. For each selected detection method, select a detection level to define the sensitivity of anomaly detection:
      • Low: Performs minimal analysis and reports only major anomalies. Use this level if your environment experiences frequent, legitimate file changes and you want to reduce false positives.
      • Medium: Provides a balanced level of detection. It detects moderate deviations from normal patterns without generating excessive alerts. This level is selected by default.
      • High: Increases the detection sensitivity to capture even minor or infrequent anomalies, but may increase false positives.
  10. Use this option if you want to exclude specific files or directories from the anomaly detection scan. To add paths, click Add and then specify the Windows path you want to exclude from the anomaly detection scan. You can add multiple paths using the Add button.
  11. On the Where to Test tab, specify the following details.
    1. For Windows Proxy Server, do one of the following:
      • If you have already added a proxy server to the selected Site in the Console, select a proxy server from the Windows Proxy Server drop-down list.
      • If you have not added any proxy server, provide the following details, and then click Save:
        • Site Name: Select a site from the drop-down list as needed.
        • Hostname/IP Address: Specify the hostname or IP address.
        • Username: Type the username as needed.
        • Password: Type the password for the corresponding username.
      • Note: For the newly added RPS servers, RPS is added as a default proxy.
    2. For Folder Path to Mount Recovery Points, click Browse, navigate to the folder where the virtual hard disk file is located, select the folder, and then click Select.
  12. On the When to Test tab, to add an Assured Security - AI Anomaly Detection Job Schedule, click Add.
  13. The schedule section refreshes and displays the following fields:
  14. Note: If no schedule is defined, the Assured Security - AI Anomaly Detection job runs immediately after the primary task. If a schedule is defined, it runs according to the defined schedule.
  15. On the Additional Settings tab, set Timeout (1–30 days). This is the maximum time the proxy server can wait for the item to complete its scan. If the Assured Security VM remains unavailable beyond the timeout, the Assured Security - AI Anomaly Detection job fails.
  16. Click Save Policy.
  17. You have successfully created the Assured Security - AI Anomaly Detection task.