Configuring the scanner settings

Scanner settings in ICSP version 6.0.3 and later
You can configure the following ICSP Neural scanner settings:
  • Enable scanning of specific folders
  • Configure the Ludicrous mode for faster scanning
  • Configure the validity period of a scanned USB device
  • Configure the action that ICSP must perform on infected files
  • Allow access of password protected files on ICSP driver enforced systems
  • Allow access of malformed files on ICSP driver enforced systems
To configure the scan settings, click
Scan > Scanner Settings
and perform the required actions listed on the following table. After making the required configuration changes, click
Save Configuration
.
Goal
Configuration details
Additional information
Enable scanning of specific folders
Default setting: Disabled
If you want to change the default setting:
  1. Corresponding to
    Enable Specific Folder Scan
    , move the slider to the enabled position.
  2. In the
    Folder Name
    field, specify the folder path on the USB stick that must be scanned.
If specific folder scan is enabled and you initiate a scan, the scanner station visualization screen prompts you to choose between the specific folder scan or a full scan.
Depending on your scan choice and successful validation, you can either access files only in the scanned specific folder or all the files in the USB device when you connect it to a system.
Configure the Ludicrous mode for faster scanning
For configuration information, see Configuring the Ludicrous mode for faster scanning.
The Ludicrous mode is the accelerated scan-only mode of the ICSP Neural scanner station introduced in version 6.0.3.
Configure the validity period of a scanned USB device
Default setting: NEVER EXPIRES
If you want to change the default setting:
Corresponding to
How long should a scanned USB device be valid?
, select the required option from the list.
In a validated USB device, if you save new files or delete an existing file, the validity of that devices ceases. You must scan and validate that device again.
Configure the action that ICSP must perform on infected files
Default setting: DELETE FILE
If you want to change the default setting:
Corresponding to
What action must be performed on malware detected during the scan?
, select the required option from the list.
If you have any trusted file which has been reported by ICSP as infected, you can whitelist that file from scanning. For more information, see Whitelisting trusted files from scanning.
If you change the default setting, ensure that you follow your organization policy for detected malware.
Allow access of password protected files on ICSP driver enforced systems
Default setting: Disabled
If you want to change the default setting:
Corresponding to
Allow Password Protected Files
, move the slider to the enabled position.
By default, ICSP does not scan password protected files in a USB device. If you connect a scanned USB device containing some password protected files to a ICSP driver enforced system, you are not allowed to access those files. If there is an organizational requirement to allow access to the password protected files, enable this setting.
Enabling this option presents a security risk as password protected files are accessible from the ICSP driver enforced systems.
Allow access of malformed files on ICSP driver enforced system
Default setting: Disabled
If you want to change the default setting:
Corresponding to
Allow Malformed Files
, move the slider to the enabled position.
To scan archived files, ICSP extracts the files from the archive. Files which are successfully extracted are scanned by the scanner station. If an error occurs during file extraction, ICSP logs archive extraction errors. If you want to ignore these archive extraction errors, enable this setting.
By default, ICSP does not scan password malformed files in a USB device. If you connect a scanned USB device containing some malformed files to a ICSP driver enforced system, you are not allowed to access those files. If there is an organizational requirement to allow access to these, enable this setting.
Enabling this option presents a security risk as malformed files are accessible from the ICSP driver enforced systems.
Scanner settings in ICSP versions earlier than 6.0.3
You can configure the following ICSP Neural scanner settings:
  • Enable scanning of specific folders
  • Enable ICSP to delete or only report infected files
  • Define the validity period of a scanned USB device
  • Enable scanning of password protected files
  • Define if extraction errors reported during scanning of archived files must be ignored
To configure the scan settings, click
Scan > Scanner Settings
and perform the required actions listed on the following table. After making the required configuration changes, click
Save Configuration
.
Goal
Configuration details
Additional information
Enable scanning of specific folders
Default setting: Disabled
If you want to change the default setting:
  1. Corresponding to
    Enable Folder Scan
    , move the slider to the enabled position.
  2. In the
    Folder Name
    field, specify the folder path on the USB stick that must be scanned.
If specific folder scan is enabled and you initiate a scan, the scanner station visualization screen prompts you to choose between the specific folder scan or a full scan.
Depending on your scan choice and successful validation, you can either access files only in the scanned specific folder or all the files in the USB device when you connect it to a system.
Enable ICSP to delete or only report infected files
Default setting: DELETE FILE
If you want to change the default setting:
Corresponding to
What action should be taken when malware is found on a removeable USB device
, select the required option from the list.
If you have any trusted file which has been reported by ICSP as infected, you can whitelist that file from scanning. For more information, see Whitelisting trusted files from scanning.
If you change the default setting, ensure that you follow your organization policy for detected malware.
Define the validity period of a scanned USB device
Default setting: NEVER EXPIRES
If you want to change the default setting:
Corresponding to
How long should a scanned USB stick be valid?
, select the required option from the list.
In a validated USB device, if you save new files or delete an existing file, the validity of that devices ceases. You must scan and validate that device again.
Enable scanning of encrypted USB devices
Default setting: Enabled
If you want to change the default setting:
Corresponding to
Enable support for encrypted USB memory sticks
, move the slider to the disabled position.
Support for encrypted USB devices is currently restricted to the Kingston DataTraveler Vault Privacy (v2 and v3) encrypted USB devices
When you insert an encrypted USB device on the scanner station, you are prompted to enter the encryption password (generated during the DataTraveler Vault Privacy (DTVP) setup) to initiate the scan. The maximum number of password attempts allowed is ten. Any invalid password entry exceeding the maximum limit locks out the USB device on the scanner station. The encrypted USB stick can only be used again after it is reinitialized using a valid Kingston DTVP-equipped system.
If the setting is disabled, you are not allowed to initiate the scan of the encrypted USB device.
Enable access of password protected files
Default setting: Disabled
If you want to change the default setting:
Corresponding to
Allow Password Protected Files
, move the slider to the enabled position.
By default, ICSP does not scan password protected files in a USB device. If you connect a scanned USB device containing some password protected files to a protected system, ICSP does not allow you to access those files. If there is an organizational requirement to allow access to the password protected files, enable this setting.
When you enable scanning of password protected files, the password protected files in a connected USB device are accessible from the protected systems. As such, enabling this option presents a security risk.
Define if extraction errors reported during scanning of archived files must be ignored
Default setting: Disabled
If you want to change the default setting:
Corresponding to
Ignore Archive Errors
, move the slider to the enabled position.
To scan archived files, ICSP extracts the files from the archive. Files which are successfully extracted are scanned by the scanner station. If an error occurs during file extraction, ICSP logs archive extraction errors. If you want to ignore these archive extraction errors, enable this setting.