Preventing Uploads of Malicious Files

FlexNet Manager Suite 2022 R1 (On-Premises)
At several points in FlexNet Manager Suite, such as in the properties of purchases, contracts, assets, and licenses, you can reference supporting documents to help with record management. These documents can be referenced in various ways, including:
  • By descriptive text about where a physical document is stored
  • By URL, for online records
  • For electronic documents locally available, by uploading the files to the application server, and saving them in your compliance database.
A possible problem with the last option is that the uploaded content may be malicious, carrying an unexpected virus payload. By default, there is no scanning of uploaded documents to guard against this risk. In this small section, you can find:
  • How to set up a recommended anti-virus tool for on-demand scanning of uploaded documents (see Configuring the Recommended AV)
  • Some high-level guidance on configuring the system to use a different anti-virus scanner of your own choice (see Integrating Another AV Tool)
  • The configuration changes needed on your web application server for FlexNet Manager Suite (or, in smaller implementations, the server fulfilling that role) to switch from the default state of no automated scanning of uploads, to automatically scanning every uploaded document (see Turning on Document Scanning).
Tip: If you use scripted installation or upgrades, review the current editions of the installation or upgrade documents for changes in your answer files that can assist in this configuration work.

FlexNet Manager Suite (On-Premises)

2022 R1