Some ICAP servers even accept custom adaptation modules or plugins. With your own risk, you can try virus scanner with test files from Please read instructions, before downloading test files. While writing yet another ICAP server from scratch is always a possibility, the following ICAP servers can be modified to support the adaptations you need. Next edit ORDS configuration file default.xml and add below lines to it before closing properties tagĬhange key rver value to point server where you did install C-ICAP if ORDS is running on different server.Īfter you have modify ORDS configuration, restart ORDS standalone or web server where ORDS is deployed. ServiceAlias AVSCAN virus_scan?allow204=on&sizelimit=off&mode=simple Virus_scan.ScanFileTypes TEXT DATA EXECUTABLE ARCHIVE GRAPHICS STREAM DOCUMENT Sudo sed -i 's/START=no/START=yes/g' /etc/default/c-icapĮdit file /etc/c-icap/nf and add below lines to end of file Sudo apt install libc-icap-mod-virus-scan libclamunrar9Īfter packages are installed, edit file /etc/default/c-icap to allow C-ICAP start Refer to your External DLP product documentation for instructions on how to accomplish this setup. Blocking mode sets the ICAP server to relay the classification verdict back to Defender for Cloud Apps.

Here are steps how to do that on Ubuntu 18.04 server assuming you have already working ORDS installation on same or different server.įirst install needed packages and dependencies. Set up an ICAP server, taking note of the port number, and make sure that you set Mode to Blocking. Oracle REST Data Service (ORDS) has feature to scan uploaded files for viruses.