Skip to main content
Solved

Security of zip and PDF upload

A
Forum|alt.badge.img+11
  • Augustin
  • Flight Specialist | Tier 4
  • 82 replies

Hello everyone,

 

I want to have some end users send PDF or ZIP to Automation Anywhere (and possibly Document Automation).

I then want to avoid corrupted PDFs, Zip bombs, or any virus/trojan horse/etc.

I have searched and not found in the documentation : is there an antivirus scan or a firewall included in Automation Anywhere to protect against this kind of threat ? I did find information on the architecture & security of Automation Anywhere (Defenses against common vulnerabilities, Network security overview, RBAC...) but this is not exactly what I am looking for.

Best answer by Raul Jaimes

@Augustin 

In A360 using an admin user , you can change the default setting  in Settings→ Security Settings and File upload settings. 

 

 

However, i don't notice where you can set specific extensions or additional rules.

 

HTH

Regards

View original
Did this topic help answer your question?

4 replies

Padmakumar
Forum|alt.badge.img+15
  • Padmakumar
  • Flight Specialist | Tier 4
  • 805 replies
  • May 24, 2023

Hi @Augustin ,

 

There is no standalone mechanism available as such for this purpose. However, you can add file extensions to the configuration file that restricts the user from uploading files that have extensions other than the ones which are on the trusted list.

 

Refer here for further info.

Padmakumar
Raul Jaimes
Forum|alt.badge.img+9
  • Raul Jaimes
  • Navigator | Tier 3
  • 494 replies
  • Answer
  • May 24, 2023

@Augustin 

In A360 using an admin user , you can change the default setting  in Settings→ Security Settings and File upload settings. 

 

 

However, i don't notice where you can set specific extensions or additional rules.

 

HTH

Regards

A
1 person likes this
  • A
    Augustin
Padmakumar
Forum|alt.badge.img+15
  • Padmakumar
  • Flight Specialist | Tier 4
  • 805 replies
  • May 25, 2023

Hi @Augustin ,

 

Since you have posted the question under Community Edition, I assumed that you are using the same product through which the step which @Raul Jaimes had mention won’t be possible to do. 

 

If you are using the Enterprise client, you can use File upload settings under Settings through Admin user.

Padmakumar
A
Forum|alt.badge.img+11
  • Augustin
  • Author
  • Flight Specialist | Tier 4
  • 82 replies
  • May 25, 2023

Hi @Raul Jaimes Thanks a lot for your answer !

@PadmakumarThanks for the precision !

 

Under Community Edition I assume a workaround could be to download the file and then to use the Package : Open program/file action to run the anti-virus software (edit : third-party provided, for example microsoft security essentials) on this file ?

Reply


Terms & ConditionsCookie settings

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings