Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Websense Data Security > Registering and configuring Data Security
Related topics:
*
Registration with off-box Data Security Management Server is automatic after Configure > My Proxy > Basic > Data Security > Integrated on-box is enabled and Content Gateway is restarted.
Important 
*
Web DLP policies are configured in TRITON – Data Security in the System Modules section. You must deploy the Data Security policies to put them into effect. See TRITON - Data Security Help for details.
*
View registration status in Content Gateway Manager on the Monitor > Summary page by clicking More Detail and checking the list at the bottom of the Subscription Details section.
*
Go to Configure > My Proxy > Basic and enable Data Security > Integrated on-box. If this option is not enabled, registration is with the Forensics Repository only.
Note 
Before enabling Data Security >Integrated on-box, ensure that the Content Gateway and Data Security Management Server computers are running and accessible, and that their system clocks are synchronized within a few minutes.
After Data Security > Integrated on-box is enabled, registration with Data Security Management Server is automatic and is performed, if needed, every time that Content Gateway starts. To perform registration, Content Gateway queries Websense Web Security Policy Broker for needed information, including IP address and cluster ID.
Registration status can be viewed in Content Gateway Manager on the Monitor > Summary page by clicking More Detail and reviewing the list at the bottom of the Subscription Details section.
If automatic registration fails, an alarm displays.
After Data Security > Integrated on-box is enabled and Content Gateway has been restarted, you can attempt a manual registration by going to Configure > Security > Data Security (see below).
Important 
If Content Gateway is not located on a V-Series appliance, registration requires that the Content Gateway host system have an IPv4 address assigned to the eth0 network interface. After registration, the IP address may move to another network interface on the system; however, that IP address is used for Data Security configuration deployment and must be available as long as the two modules are registered.
2.
Ensure that Data Security > Integrated on-box is enabled. In Content Gateway Manager select Configure > Basic > General. In the list of Features, under Networking locate Data Security, select On and then select Integrated on-box.
3.
Click the Not registered link. This opens the Configure > Security > Data Security registration screen.
4.
Enter the IP address of the Data Security Management Server.
6.
Click Register. If registration is successful, a message confirms the result and prompts you to restart Content Gateway.
When registration is successful, on the Configure > Security > Data Security page set:
1.
Analyze FTP Uploads: Select this option to send FTP uploads to Data Security for analysis and policy enforcement.
2.
Analyze HTTPS Content: Select this option to send decrypted HTTPS posts to Data Security for analysis and policy enforcement. SSL Manager must be enabled on Content Gateway. See Working With Encrypted Data.
Note 
3.
Click Apply to save your settings and then restart Content Gateway.
Data Security and Content Gateway communicate over several ports. If IPTables are configured on the Content Gateway host system, these ports must be open in IPTables. See the Content Gateway Installation Guide, or the Technical Library article titled "Configuring IPTables for Websense Content Gateway".
Note 

Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Websense Data Security > Registering and configuring Data Security