Huawei OceanStor

External documentation

You can find detailed instruction on Huawei storage setup with a 3rd party file protection system at the this URL: https://support.huawei.com/enterprise/en/doc/EDOC1100138521/69ba9dda/file-antivirus.

For the MetaDefender ICAP Server integration you should follow the Configuring Antivirus Servers section in the setup instruction on the Huawei site: https://support.huawei.com/enterprise/en/doc/EDOC1100138521/9f834e59/configuring-antivirus-servers.

Supported features

The following OPSWAT technologies are supported by MetaDefender ICAP Server when integrated to Huawei OceanStor via FILEMOD:

Configuration

Things to consider during setup (in this specific order):

Huawei Antivirus Agent

  1. After you deploy the Huawei Antivirus Agent, edit the agentConfig.ini file (default location C:\Program Files (x86)\Huawei\Antivirus Agent\cfg) by adding the name of the MetaDefender ICAP Server service executable image mdicapsrv.exe in the Symantec Protection Engine section as highlighted below:

Restart the antivirus agent program. On the Services page, right-click Antivirus Agent Watchdog and choose Restart to restart the antivirus agent program. The antivirus agent configuration is completed.

Huawei OceanStor

  1. When setting up with MetaDefender ICAP Server you should be using the Symantec Protection Engine profile as per below screenshot:

You can now test it by clicking on the “Test” button:

Permissions

MetaDefender ICAP Server service

  1. Change the MetaDefender ICAP Server service account to match the same account that has been configured for the Huawei Antivirus Agent.
  1. Restart the MetaDefender ICAP Server service. On the Services page, right-click OPSWAT MetaDefender ICAP Server and choose Restart to restart.
  2. Restart the Antivirus Agent Watchdog. On the Services page, right-click Antivirus Agent Watchdog and choose Restart to restart the antivirus agent program. The antivirus agent configuration is complete

Storage share

  1. Make sure the same account that is used for Huawei Antivirus Agent and the MetaDefender ICAP Server has NTFS permission on the CIFS share as per below screenshot:

Testing

  1. Test the integration by uploading the EICAR Standard Anti-Virus Test File to the storage share to see the file getting deleted by the MetaDefender ICAP Server.

Examples

Content disarm and reconstruction

Original file upload:

MetaDefender ICAP will replace it with the sanitized version automatically:

Data loss prevention

When Proactive DLP is enabled and a file with sensitive information is uploaded, the file will get deleted automatically:

Multiscanning

Uploading an infected file will get deleted automatically:
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
FortiGate
On This Page
Huawei OceanStorSupported featuresConfigurationHuawei Antivirus AgentHuawei OceanStorPermissionsMetaDefender ICAP Server serviceStorage shareTestingExamplesContent disarm and reconstructionData loss preventionMultiscanning