Enabling virus scanning on an additional server in a domain

Enabling virus scanning on an additional Domino server can be much simpler, especially if you use the same configuration document (which implies the same ICAP server) that you defined for your first Domino server.

About this task

If you can reuse an existing configuration, you simply need to create a new server document for your additional server that references that configuration, then run the mailscan task on that server. If you need a different configuration, for example because you want to use a different ICAP server, then you also need to create a new configuration document and import its TLS certificate.


  1. Open cscancfg.nsf on the administration server of your domain.
  2. If necessary, create a configuration document in cscancfg.nsf, as described in Creating a virus scanning Configuration. As part of this, if your new configuration specifies a new ICAP server, you must import its TLS certificate.
  3. Create a new server document in cscancfg.nsf, as described in Configuring virus scanning on a Domino server.
  4. Verify that the server runs the router task. Virus scanning is done by in conjunction with the router.
  5. Add mailscan to the ServerTasks notes.ini variable for your server, to ensure that the task will start up automatically when Domino starts.
  6. Issue the command load mailscan to load the mailscan task.
  7. The first time mailscan runs, it will create a replica of cscancfg.nsf from the administration server. It will read the configuration for this server and initiate virus scanning.
  8. See Troubleshooting virus scanning for statistics that you can monitor to verify the feature is operating correctly.