- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
- About File Auditing
Setting up File Audit
- About Endpoint DLP
Setting up Endpoint DLP
- About File Analysis
Setting up File Analysis
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Cloud Access Reports
- Application Reports
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload Reports
Setting up Cloud Protection
- Technician configuration
- Email configuration
- Notification filters
- Manage agent
- SIEM integration
- Business hours configuration
About DataSecurity Plus
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
Configuring a gateway server
A gateway server monitors web traffic to provide actionable insights into the web applications used and helps enforce data protection policies like blocking unsanctioned applications.
Steps to configure gateway servers:
- Select Cloud Protection from the application drop-down menu at the top.
- Navigate to Configuration. Select Gateway Servers under the Server section.
- Click + Add Gateway Server located at the top-right corner.
- In the Deployment Type page, you have the option of running the Cloud Protection module in your production environment or as a trial using our setup. Once you've decided which you'd like to use, click Go.
- In the Server Configuration page:
- Enter a suitable name in the Alias field to identify the gateway server in the dashboard and reports.
- Enter the Computer Name of the machine where you would like to run the gateway server.
- Enter the appropriate Port number.
- Retain the OS as Windows (the default setting).
- In the SSL Configuration page:
- Choose the preferred Transport Layer Security (TLS) versions.
- Under Deep Packet Inspection, select the suitable Mode from the drop-down menu.
- Enable: Monitors all web traffic content
- Mixed Mode: Inspects only specific cloud applications
- Disable: Does not perform deep packet inspection
- Configure settings in the Proxy Chain page if the existing gateway server needs to connect to another proxy server for connecting to the internet. Enter the details of the proxy servers as applicable.
- Run through the settings in the Review Summary page, and click Save.
Note: Windows is currently the only OS that DataSecurity Plus supports.
Note: You can select either one or more of the TLS versions as needed for your environment. SSL versions preceding TLSV1.0 are not supported.
Note: All cloud applications that are part of the File Upload Reports are configured in Mixed Mode by default.
Once Deep Packet Inspection is enabled, you will need to create or select an existing certificate authority (CA) certificate.
You can create a new CA certificate either by clicking Create new CA Certificate button or by visiting the Server CA Management page and then following these steps.
|Proxy setting||Required details|
|PAC proxy||PAC script location|
|IP proxy||IP address with port|
PAC Script Location: The URL of the Proxy Auto-Configuration (PAC) file that contains scripts on how to handle web traffic requests.
Upon successful configuration you will be directed to the Manage Agent page.