You can forward information about transactions that violate the DLP policy to the Internet Content Adaptation Protocol (ICAP) receivers you’ve defined in the Admin Portal.

To add a secure or unencrypted ICAP receiver, you must define them on the DLP Incident Receiver page by providing the public IP address of your DLP server with the port number on which your network firewall initially accepts the secure ICAP traffic sent by the Zscaler service. To learn more, see Enabling Secure ICAP and Enabling Unencrypted ICAP.