ICAP Error (icap_error) on the browser, An error occurred while performing an ICAP operation: Server unavailable: No ICAP server is available to process the request.

CAS-VA (CAS-VA) , ProxySG Software - SGOS (ProxySG Software - SGOS), ISG , Symantec Content analysis

• The ICAP server might be experiencing downtime, or there could be connectivity issues between the ProxySG and the ICAP server. Furthermore, your ICAP policy is set to (fail_closed) i.e. Deny client requests if any errors occur during ICAP processing or the ICAP server is not available. 
• The Anti-Virus (AV) license is invalid or expired on Symantec CAS or security-related subscriptions on Edge SWG (ProxySG) expired.

1- If there is a license issue on either Symantec CAS or Edge SWG (ProxySG), solve it before proceeding any further with troubleshooting. 

2- If you enable the Web Content layer or rule scanning on the ProxySG appliance before configuring ICAP servers and services, users will lose web access. Set up ICAP services and servers before enabling AV scanning. Then, verify connectivity between the ProxySG and the ICAP server by Bluecoat packet captures for troubleshooting Edge SWG and Advanced Secure Gateway (broadcom.com)

3 - Based on your company's security posture, you might consider changing the ICAP policy to 'Continue without malware scanning" (fail_open) ". With this setting, users can still access the Internet even if the ICAP service is down. However, this will expose the network to potential malware downloads during ICAP server downtime. Desktop virus scanners, if deployed, can offer some protection against malware.