Enable Antivirus Scanning for File Uploads

You can configure your existing antivirus software in ServiceDesk Plus to detect any vulnerable files during file uploads and email attachment receipts. Antivirus software that uses ICAP protocol can only be configured.

To configure an antivirus scan in the application,

1. Go to Admin > Security Settings > Advanced.
2. Click on the checkbox beside "Enable Antivirus scanning for file uploads".
3. Enter the Host Name where the antivirus is installed.
4. Enter the Service Name and the Port of the antivirus tool. This can be found in your Antivirus tool's Settings page.
5. Click Save.
   

Once configured, the file uploads and attachment receipts will be scanned for vulnerable files.

Some of the antivirus tools that can be configured:

      1. BITDEFENDER_SECURITY_FOR_STORAGE
      2. ESET_FILE_SECURITY
      3. ESET_GATEWAY_SECURITY
      4. KASPERSKY_SECURITY_FOR_WINDOWS_SERVER
      5. MCAFEE_VIRUSSCAN_ENTERPRICE_FOE_STORAGE
      6. MCAFEE_WEB_GATEWAY
      7. SYMANTEC_PROTECHTION_ENGINE_FOR_CLOUD
      8. CLAM_AV_WITH_SQUID

Password Policy Tab

The configured password policy will be applied when:

• Users change/reset their account passwords.
  

• SDAdmin changes user passwords.
  

• New users are added via Web form, CSV import, or Active Directory import.
  

• Dynamic users are added.
  

• Local authentication password is set - both auto-generated and predefined passwords.
  

To configure the password policy,

• Select Enable password policy checkbox.
  

• Select the minimum password length between 8 and 99. The default value is 8.
  

• Select if the password must include:
  

• Both uppercase and lower case letters
  

• Special characters/symbols
  

• Choose the number of previous passwords to remember and prevent reuse. The application can remember up to 8 passwords.
  

• Select the expiry period for the password.

Enable Force password reset at first login: You can enable this option to force users to change their password during the first login. This is beneficial when preset passwords are issued.

The application must be restarted for any changes in the settings to take effect.

Security Meter

Security Meter allows you to monitor and gauge how effectively you have configured various built-in application security features. The Security Meter displays a security score in percentage based on the number of security configurations that have been enabled against the total number of available security configurations. Based on the score, your application security is categorized into one of the following four security levels:

• Unsecured: This level is displayed when the score is less than 50%. This means you have configured less than 50% of the available built-in security settings.

• Weak Security: This level is displayed when the security score is between 50 and 70%. This means you have configured between 50 to 70% of the available built-in security settings.

• Moderate Security: This level is displayed when the security score is between 70 and 90%. This means you have configured between 70 to 90% of the available built-in security settings.

• Highly Secure: This level is displayed when the security score is over 90%. This means you have configured more than 90% of the available built-in security settings. The security meter can be accessed by SDAdmins or SDOrgAdmins from Global Settings > General Settings > Security Settings.

The list of available security settings can also be accessed directly from the security meter by clicking View all security configurations.

Based on the setting, when you click an item on the list, you will either be taken to the corresponding configuration page or be shown an appropriate configuration popup. You can make the necessary changes there and save it.