Managing ICAP exclusions

Users with the Senior security officer can create an ICAP exclusion list, that is, a list of data that Kaspersky Anti Targeted Attack Platform must not scan. You can create ICAP exclusion rules for the following data:

• Format.
• User Agent.
• MD5.
• URL mask.
• Source IP or subnet.

Users with the Security auditor and Security officer roles can view the list of ICAP exclusion rules.

In distributed solution mode, ICAP exclusions created on an SCN apply to all Sensor components connected to that SCN. ICAP exclusions created on a PCN apply to the SCN installed on the same device as the PCN and to all Sensor components connected to that SCN.

In this section Viewing the ICAP exclusion table Adding a rule to ICAP exclusions Removing rules from ICAP exclusions Editing or disabling a rule in the ICAP exclusion list Filtering rules in the ICAP exclusion list by criterion Filtering rules in the ICAP exclusion list by value Filtering rules in the ICAP exclusion list by state Resetting rule filtering conditions in the ICAP exclusion list

Page top