You can change the properties of a particular scan engine and the general properties of the vscan service. Many scan engines limit the size of the files they scan, so the vscan service's max-size property must be set to a value less than or equal to the scan engine's maximum allowed size. You then define whether files that are larger than the maximum size, and therefore not scanned, are accessible.
Before You Begin
You must become an administrator who is assigned the VSCAN Management rights profile. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.
$ vscanadm show max-size=1GB max-size-action=allow timeout=30 ...
If the scanning time exceeds the timeout, access to the file is denied.
$ vscanadm set -p timeout=60
$ vscanadm set -p max-size=128M
$ vscanadm set -p max-size-action=deny
For more information, see the vscanadm(8) man page.