Search

GlobalSCAPE Knowledge Base

Which antivirus (AV) and data loss prevention (DLP) tools does the CIC module in EFT support?

Karla Marsh
EFT Express (SMB) & Enterprise

THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT, version 7.0.3 and later

QUESTION

Which antivirus (AV) and data loss prevention (DLP) tools does the CIC module in EFT support?

ANSWER

Globalscape has tested the CIC module operation with the following antivirus and DLP servers:

Antivirus:

  • Kaspersky
  • Sophos
  • Symantec
  • Trend Micro

 EFT’s CIC module will *not* properly work with Symantec AV unless you edit/create the registry setting described here: https://kb.globalscape.com/KnowledgebaseArticle11375.aspx.

DLP:

  • Symantec
  • Websense
  • McAfee
  • RSA

The following systems were not tested by Globascape but work for customers (who confirmed proper operation):

DLP:

  • RSA DLP
  • Symantec DLP

Antivirus:

  • McAfee AV (specifically VSES, but we expect that covers the general statement "AV").

Tools other than those tested above are likely to work with the CIC module, which uses the Internet Content Adaptation Protocol (ICAP).

MORE INFORMATION

The Content Integrity Control (CIC) Action used in EFT Enterprise Event Rules can be configured to send a file to an antivirus scanner or data loss prevention solution for processing. When this Action is added to an Event Rule, a file that triggers the Event Rule is sent to an ICAP server for processing. When the file passes, other Actions can occur, such as moving the file to another location. If the file fails, processing can stop, or other Actions can occur, such as sending an email notification.

Details
Last Modified: 4 Weeks Ago
Last Modified By: kmarsh
Type: FAQ
Rated 2 stars based on 2 votes.
Article has been viewed 4K times.
Options
Also In This Category