You can forward information about transactions that violate the DLP policy to the Internet Content Adaptation Protocol (ICAP) receivers you’ve defined in the Admin Portal.

You can configure secure or unencrypted ICAP receivers on the DLP Incident Receiver page. Zscaler recommends sending transaction information via secure ICAP.

About the ICAP Settings Page

On the ICAP Settings page (Policies > Data Protection > Common Resources > DLP Incident Receiver), you can do the following:

1. Add an ICAP receiver.
2. Download the Mutual Transport Layer Security (MTLS) Certificate Authority (CA) Certificate that will be used when the ICAP server requests client authentication.

The use of this certificate is optional and is only required if the ICAP server is using mutual authentication. After you download the certificate, install the certificate in your ICAP server's tunnel configuration. To learn more, see Configuring the ICAP Server with the Mutual Transport Layer Security (MTLS) CA Certificate.

3. View a list of all ICAP receivers that were configured for your organization. For ICAP receivers, you can see the following:
   • Name: The name of the ICAP receiver. You can sort this column.
   • Status: Displays whether the ICAP receiver is enabled or disabled. You can sort this column.
   • URI: The DLP server URI. You can sort this column.
4. Edit an ICAP receiver configuration.
5. Modify the table and its columns.
6. Search for an ICAP receiver.
7. View the Zscaler Incident Receiver page. To learn more, see About Zscaler Incident Receiver.