Configuring the scanner settings
Scanner settings in ICSP version 6.0.3 and later
You can configure the following ICSP Neural scanner settings:
- Enable scanning of specific folders
- Configure the Ludicrous mode for faster scanning
- Configure the validity period of a scanned USB device
- Configure the action that ICSP must perform on infected files
- Allow access of password protected files on ICSP driver enforced systems
- Allow access of malformed files on ICSP driver enforced systems
To configure the scan settings, click
Scan > Scanner Settings
and perform the required actions listed on the following table. After making the required configuration changes, click Save Configuration
.Goal | Configuration details | Additional information |
|---|---|---|
Enable scanning of specific folders | Default setting: Disabled If you want to change the default setting:
| If specific folder scan is enabled and you initiate a scan, the scanner station visualization screen prompts you to choose between the specific folder scan or a full scan. Depending on your scan choice and successful validation, you can either access files only in the scanned specific folder or all the files in the USB device when you connect it to a system. |
Configure the Ludicrous mode for faster scanning | For configuration information, see Configuring the Ludicrous mode for faster scanning. | The Ludicrous mode is the accelerated scan-only mode of the ICSP Neural scanner station introduced in version 6.0.3. |
Configure the validity period of a scanned USB device | Default setting: NEVER EXPIRES If you want to change the default setting: Corresponding to How long should a scanned USB device be valid? , select the required option from the list. | In a validated USB device, if you save new files or delete an existing file, the validity of that devices ceases. You must scan and validate that device again. |
Configure the action that ICSP must perform on infected files | Default setting: DELETE FILE If you want to change the default setting: Corresponding to What action must be performed on malware detected during the scan? , select the required option from the list. | If you have any trusted file which has been reported by ICSP as infected, you can whitelist that file from scanning. For more information, see Whitelisting trusted files from scanning. If you change the default setting, ensure that you follow your organization policy for detected malware. |
Allow access of password protected files on ICSP driver enforced systems | Default setting: Disabled If you want to change the default setting: Corresponding to Allow Password Protected Files , move the slider to the enabled position. | By default, ICSP does not scan password protected files in a USB device. If you connect a scanned USB device containing some password protected files to a ICSP driver enforced system, you are not allowed to access those files. If there is an organizational requirement to allow access to the password protected files, enable this setting. Enabling this option presents a security risk as password protected files are accessible from the ICSP driver enforced systems. |
Allow access of malformed files on ICSP driver enforced system | Default setting: Disabled If you want to change the default setting: Corresponding to Allow Malformed Files , move the slider to the enabled position. | To scan archived files, ICSP extracts the files from the archive. Files which are successfully extracted are scanned by the scanner station. If an error occurs during file extraction, ICSP logs archive extraction errors. If you want to ignore these archive extraction errors, enable this setting. By default, ICSP does not scan password malformed files in a USB device. If you connect a scanned USB device containing some malformed files to a ICSP driver enforced system, you are not allowed to access those files. If there is an organizational requirement to allow access to these, enable this setting. Enabling this option presents a security risk as malformed files are accessible from the ICSP driver enforced systems. |
Scanner settings in ICSP versions earlier than 6.0.3
You can configure the following ICSP Neural scanner settings:
- Enable scanning of specific folders
- Enable ICSP to delete or only report infected files
- Define the validity period of a scanned USB device
- Enable scanning of password protected files
- Define if extraction errors reported during scanning of archived files must be ignored
To configure the scan settings, click
Scan > Scanner Settings
and perform the required actions listed on the following table. After making the required configuration changes, click Save Configuration
.Goal | Configuration details | Additional information |
|---|---|---|
Enable scanning of specific folders | Default setting: Disabled If you want to change the default setting:
| If specific folder scan is enabled and you initiate a scan, the scanner station visualization screen prompts you to choose between the specific folder scan or a full scan. Depending on your scan choice and successful validation, you can either access files only in the scanned specific folder or all the files in the USB device when you connect it to a system. |
Enable ICSP to delete or only report infected files | Default setting: DELETE FILE If you want to change the default setting: Corresponding to What action should be taken when malware is found on a removeable USB device , select the required option from the list. | If you have any trusted file which has been reported by ICSP as infected, you can whitelist that file from scanning. For more information, see Whitelisting trusted files from scanning. If you change the default setting, ensure that you follow your organization policy for detected malware. |
Define the validity period of a scanned USB device | Default setting: NEVER EXPIRES If you want to change the default setting: Corresponding to How long should a scanned USB stick be valid? , select the required option from the list. | In a validated USB device, if you save new files or delete an existing file, the validity of that devices ceases. You must scan and validate that device again. |
Enable scanning of encrypted USB devices | Default setting: Enabled If you want to change the default setting: Corresponding to Enable support for encrypted USB memory sticks , move the slider to the disabled position. | Support for encrypted USB devices is currently restricted to the Kingston DataTraveler Vault Privacy (v2 and v3) encrypted USB devices When you insert an encrypted USB device on the scanner station, you are prompted to enter the encryption password (generated during the DataTraveler Vault Privacy (DTVP) setup) to initiate the scan. The maximum number of password attempts allowed is ten. Any invalid password entry exceeding the maximum limit locks out the USB device on the scanner station. The encrypted USB stick can only be used again after it is reinitialized using a valid Kingston DTVP-equipped system. If the setting is disabled, you are not allowed to initiate the scan of the encrypted USB device. |
Enable access of password protected files | Default setting: Disabled If you want to change the default setting: Corresponding to Allow Password Protected Files , move the slider to the enabled position. | By default, ICSP does not scan password protected files in a USB device. If you connect a scanned USB device containing some password protected files to a protected system, ICSP does not allow you to access those files. If there is an organizational requirement to allow access to the password protected files, enable this setting. When you enable scanning of password protected files, the password protected files in a connected USB device are accessible from the protected systems. As such, enabling this option presents a security risk. |
Define if extraction errors reported during scanning of archived files must be ignored | Default setting: Disabled If you want to change the default setting: Corresponding to Ignore Archive Errors , move the slider to the enabled position. | To scan archived files, ICSP extracts the files from the archive. Files which are successfully extracted are scanned by the scanner station. If an error occurs during file extraction, ICSP logs archive extraction errors. If you want to ignore these archive extraction errors, enable this setting. |