ICAP Over HTTPS

Question

So we have some conflicting requirements where our applications that require end to end encryption are also required to ICAP uploaded files to our Content Analysis platform. The Content Analysis platform will sandbox and scan files for malicious content and supports ICAP over HTTPS through port 11344. However as far as I can tell the F5 ASM only supports sending traffic over HTTP to ICAP on 1344 (or other HTTP ports).&nbsp;
Is anyone aware of a work around to do ICAP over HTTPS so that these files are never sent in the clear? This is critical if we are going to be able to meet customer requirements. Can any F5 employees chime in if this is a planned future feature? We are currently on 12.1.2. &nbsp;

niels_van_sluis · Answer

Did you see this post? The solution given here makes sense:&nbsp;
https://devcentral.f5.com/questions/asm-icap-support-for-https&nbsp;

Forum Discussion

ICAP Over HTTPS

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

What is the flow of https virtual server with ASM security policy and ICAP request Adapt profile?

iRule to take cookie from HTTP Response into HTTP Request via table

I just want to use the relative URI in the ICAP profile

iApp template to integrate F5 BIG-IP with Check Point SandBlast ICAP server

ICAP max L3 hops?