Understanding ARP Alerts and ARP Best Practices
Applies to
- ONTAP 9
- Anti-ransomware Protection (ARP)
Answer
- In ONTAP versions 9.13.1Px and lower Anti-Ransomware alerts are not as detailed as they are based on enhancements in ONTAP 9.14.1Px
- Anti-Ransomware alerts can be forwarded using event log forwarding however, they will only be as detailed as allowed per the version of ONTAP the filer is on
- Anti-Ransomware alerts can also be set for AIQ.
- How ARP behaves within a specific cluster or environment is based on what ARP observed during learning mode and the workload of the volume once it switches from learning mode to enabled on a specific volume