Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload Reports
Setting up Cloud Protection
Dashboard
Reports
Storage Configuration
Administrative settings
- Technician configuration
- Email configuration
- Notification filters
- Manage agent
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
General settings
Release notes
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
NetApp server configuration
DataSecurity Plus helps you monitor file and folder events in NetApp servers in real time and provides detailed insights on user operations.
Minimum privileges required for NetApp server auditing
To perform file auditing in NetApp servers, DataSecurity Plus requires certain minimum permissions and privileges.
To provide these, create a dedicated DataSecurity Plus NetApp user and provision them with the following commands and permissions. Note that NetApp management details are necessary for smooth and uninterrupted collection of file activity.
| Commands | Permissions |
| Vserver fpolicy | Full access |
| Volume | Read only |
| Vserver cifs | Read only |
| System node | Read only |
To create roles for the user, use the below commands:
- security login role create –role dsp_role –cmddirname “vserver fpolicy”
- security login role create –role dsp_role -cmddirname “volume” –access readonly
- security login role create –role dsp_role –cmddirname “vserver cifs” –access readonly
- security login role create -role dsp_role -cmddirname "system node" -access readonly
Note: Users can be created for a cluster or a particular Vserver using the above commands. To create a role for a particular Vserver, add -vserver <vserver_name> in the above commands.
Connect the vsadmin role to the ONTAP management console. The user created with this role can either be a domain user or local user, but they should have access to the target NetApp server via ONTAPI.
Configuring a NetApp server
For NetApp server auditing with DataSecurity Plus, configuring a collector server is required. The collector server acts as an intermediary server that collects file access events from the NetApp server and forwards them to the DataSecurity Plus server.
To configure a NetApp server, follow the steps listed below:
- Log in to the DataSecurity Plus web console.
- Configure the domain in which the file server you want to configure is located.
- Select File Audit from the applications drop-down.
- Go to Configuration > Data Source > NetApp Server.
- Click + Add NetApp Server.
- Select the target NetApp Server Name and click Next.
- Select the Shares you want to audit and click Next.
- Under Management Details, enter the Management IP. You can enter the IP of either a Vserver or a Cluster, depending on what type your target machine is.
- Enter the User Name and Password of the DataSecurity Plus NetApp user account.
- Specify the Port number through which communication should happen and click Next.
- Under the Collector Server tab, choose the Domain Name and Collector Server Name, specify the Collector Port, and click Next.
- The Review Summary tab will give you an overview of the configured NetApp server, Shares, Management Details, and the Collector Server. After verifying the details, click Configure.
Updating NetApp server configurations
To update a configured NetApp server, follow the below given steps as per your server requirements:
- Under File Audit from the application drop-down, go to Configuration > Data Source > NetApp Server.
- Select the NetApp server you want to update. Here, you can:
- Add shares by clicking the Add Share link and selecting the share you want to add.
- Update the list of shares available for configuration in the server by clicking the refresh icon at the top-right corner of the table.
- Delete shares by clicking the Edit link and selecting the shares you want to delete.
Note: You can also view reports by clicking the View Reports link.
Editing management IP details
To update the management IP details of a configured NetApp server, follow the below given steps:
- Log in to your DataSecurity Plus web console.
- Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers.
- Click View/Edit Details in the NetApp server whose management IP details you want to edit.
- Provide the IP address of your Cluster or Vserver depending on your environment in the Management IP tab.
- Enter the Username and Password.
- Select the Port type through which communication should happen and provide the port number.
- Click Save.
Deleting NetApp server configurations
To delete a configured NetApp server:
- Log in to your DataSecurity Plus web console.
- Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp server(s).
- Choose the target NetApp server from the configured NetApp panel.
- Click the Delete icon at the top-right corner of the active tab.
- Select OK to delete the NetApp server from DataSecurity Plus.
Note: Once deleted, servers will no longer be audited. However, previously audited data will be retained.