How do I receive MD Core scan results using a static callback URL without specifying the URL in request headers?

  • This article applies to MD Core version 5.5.0 and later
  • Please note that the webhook server must be managed and hosted by you.
  • From version 5.13.0, certificate loading is enhanced to ensure Webhook communication over TLS.

Overview

MetaDefender Core allows the use of webhooks for post-scan actions. You can pre-configure a static callback URL under the Post Action section (via the Inventory menu). When enabled, MD Core will send scan results to this static URL using multi-threaded asynchronous workflow processing. This setup is ideal for disaster recovery scenarios where header-based dynamic URLs are not feasible.

By default, webhook callbacks from MetaDefender Core are sent over an unsecured connection. To enhance security and protect against potential man-in-the-middle attacks—which could lead to unauthorized alteration of scan results—MetaDefender Core supports mutual TLS (mTLS) authentication. This mechanism ensures secure communication between the MetaDefender Core server and the client receiving the callback.

For detailed guidance on configuring webhook authentication, please refer to the official documentation: Webhook Authentication Configuration

Workflow configuration

  1. On the left panel, navigate to Inventory > Post Actions > Add action
  1. Choose Webhook type, then setup the Name and static Callback URL. Press the “Add” button.
  1. You shall receive the successful message afterwards.
  1. After successfully added the action, navigate to the Workflow that you would like to trigger the Post-action, for e.g FileProcess. Then, choose the Post-Action tab to enable the action on the workflow
_If you prefer to trigger the post action only for specific verdicts—for example, Suspicious results—please select this option. The webhook server will then receive only the Suspicious results._ _If no verdicts are chosen, MD Core will send all scanned result to webhook server_

If you prefer to trigger the post action only for specific verdicts—for example, Suspicious results—please select this option. The webhook server will then receive only the Suspicious results. If no verdicts are chosen, MD Core will send all scanned result to webhook server
  1. Save the configuration and verify the result

Result from webhook:

If you require further assistance, please follow these instructions on How to Create Support Package?, before creating a support case or chatting with our support engineer.
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
How do I obtain a Trial License for MetaDefender Core?
On This Page
How do I receive MD Core scan results using a static callback URL without specifying the URL in request headers?OverviewWorkflow configurationResult from webhook: