I agree, there should be some way to clear the alert without waiting for it to age out.
To be honest...I'd like it too. No autoclear at all per default (but as option), and instead manual acknowledging of ATP events. Both methods have it's drawbacks, but choosing the way would be nice...
Sorry for short answers and typos. was written on mobile using astaro.org app.
72 hours waiting to get a Green ATP, is very long.
Hi there,
Currently that is the value of resetting the ATP alerts and you cannot change it. Before it used to change at midnight => too short. Agree with you, 72hs is a long time, therefor will forward this to product management and open a feature request.
It looks that it is still waiting 72h before clearing in 9.203-3.
I have a client that have isolated subnet connected to one of UTM eth port just for purposes of servicing PC computers for their customers. Every few days they detect some kind of ATP threat, because in most cases computers were not broken because of hardware but the software and infection problems.
The same UTM is also used for their production LAN on another eth port, so ATP status on the Dashboard is always in "Red Alert" state which usually confuses them.
