About the ICAP Network Storage Protection

Kaspersky Security for Windows Server installed on a server under Microsoft Windows protects ICAP network storages (such as EMC Isilon) against viruses and other security threats that infiltrate the server through the exchange of files.

Kaspersky Security for Windows Server has no direct access to files in an ICAP network storage (hereinafter also referred to as network attached storage). When an attempt is made to read or write to a file, the network attached storage generates an ICAP request to Kaspersky Security for Windows Server and sends the file inside this request. The application performs a virus scan of this file in accordance with the settings defined in the ICAP Network Storage Protection task. When a threat is detected, Kaspersky Security for Windows Server performs the actions defined in the task settings on the file, and then it sends the scan result to the network attached storage. If the Disinfect action is specified in the task settings, and the file is successfully disinfected, Kaspersky Security for Windows Server returns the disinfected file to the network attached storage as the response to the request.

Kaspersky Security for Windows Server allows you to configure the actions that the application will perform on infected and probably infected files.

When using KSN in the ICAP Network Storage Protection task, Kaspersky Security for Windows Server cannot delete or block files used by an ICAP network storage because the application has no direct access to network folders of the storage system when an untrusted conclusion is received from KSN services. Information about receiving an untrusted conclusion is recorded in the KSN Usage task log.

You can protect one network attached storage using one server with Kaspersky Security for Windows Server installed. To improve the performance of the network attached storage and the server with Kaspersky Security for Windows Server, you can use several servers with Kaspersky Security for Windows Server for protection of a single network attached storage. In this case, the network attached storage distributes the workload among associated servers on which Kaspersky Security for Windows Server is installed.

The ICAP Network Storage Protection task is created by default; it is a local system task of Kaspersky Security for Windows Server. You cannot delete or rename this task. You cannot create custom tasks for ICAP Network Storage Protection. You can configure the ICAP Network Storage Protection task.

You can run Network Attached Storage Protection tasks if the active key supports network attached storage protection. If you run a Network Attached Storage Protection task when the active key does not support network attached storage protection, the task returns an error. In this case, Kaspersky Security for Windows Server does not protect network attached storages.

The ICAP Network Storage Protection component is available within Kaspersky Security for Windows Server for network attached storages.

For more details on solutions for protection of organizations that include Kaspersky Security for Windows Server, see the Administrator's Guide of Kaspersky Security for Windows Server.