Home » McAfee Manuals » Networking » McAfee DTP-1650-MGRA » Manual Viewer

McAfee DTP-1650-MGRA Installation Guide - Page 38

Con McAfee DLP Prevent, Data Loss Prevention

View all McAfee DTP-1650-MGRA manuals

Add to My Manuals
Save this manual to your list of manuals

Page 38 highlights

4 Configuring McAfee DLP appliances and adding servers Configuring McAfee DLP Prevent Configure McAfee DLP Prevent McAfee DLP Prevent can be set up to process email or webmail by adding the appliance to McAfee DLP Manager, then configuring it to connect to one or more email or web servers. Task 1 Open the Devices page in one of two ways: • In ePolicy Orchestrator, select Menu | Data Loss Prevention | DLP Sys Config | System Administration | Devices. 2 Add a McAfee DLP Prevent appliance to McAfee DLP Manager. a Select Actions | Add New Device. b Enter the Device IP or hostname and Password in the value fields. c Click Add. The System Administration page reappears. 3 From the McAfee DLP Prevent appliance, click Configure. The System Configuration page appears. 4 Scroll down to the Smart Host field. Configuring more than one Smart Host is not supported. • If you are setting up McAfee DLP Prevent to process webmail, leave the Smart Hosts field blank. Smart Hosts are used only with SMTP traffic, and no configuration is needed for a proxy server because it is already part of the network. • If you are setting up McAfee DLP Prevent to process email, type the Smart Host IP address to which the processed email will be routed. (Host names are not supported.) In some cases, the Smart Host, sometimes known as the downstream MTA, might be on the same machine as the email server. If so, you must add a white list to prevent email looping. 5 In the Email Address field, type in one or more IP addresses separated by commas (no spaces). These addresses are the only email servers allowed to send messages to McAfee DLP Prevent for processing. 6 In the Email Notification field, add an administrator's email address to which notification will be sent to verify the connection. 7 Click Send test mail to test the smart host connection. 8 Click Update. SSL‑encrypted webmail transmissions might become visible during this process. 9 Check the email account to which notification was sent. If no verification message was received, repeat the process. 38 McAfee Data Loss Prevention 9.2.1 Installation Guide

Section	Page
Contents	3
Preface	5
About this guide	5
Audience	5
Conventions	5
Find product documentation	6
1 Setting up the hardware	7
Adding devices and servers	7
Check the shipment	7
Plan your installation	8
Rack mount the appliances	8
Connect a management console	9
Configure McAfee DLP Manager	10
Select an integration mode for McAfee DLP Monitor	11
SPAN port configuration	11
Integrate the appliance using a SPAN port	12
Network tap configuration	13
Network tap types	13
Integrate the appliance using a network tap	14
Complete the setup	14
2 Installing or upgrading the software on 4400 appliances	15
Download the 4400 archive	15
Boot options	16
Set up the next boot option	17
Install a fresh image on 4400 appliances	17
Upgrade the products on 4400 appliances	18
Apply a hotfix	20
Convert an installation to another McAfee DLP product	20
Restoring the drives	21
3 Installing or upgrading software on 1650 and 3650 appliances	23
Download the 1650 or 3650 archive	23
Install a fresh image on 1650 or 3650 appliances	24
Upgrade the products on 1650 or 3650 appliances	25
Apply a hotfix	26
4 Configuring McAfee DLP appliances and adding servers	29
Configure McAfee DLP appliances using Setup Wizard	29
Configure McAfee DLP appliances after installation	35
Add McAfee DLP products to McAfee DLP Manager	35
Configuring McAfee DLP Prevent	36
MTA requirements for McAfee DLP Prevent	37
Configure McAfee DLP Prevent	38
Add LDAP servers to McAfee DLP Manager	39
Add McAfee Logon Collector to McAfee DLP Manager	41
Add syslog servers to McAfee DLP systems	42
Resynchronize McAfee DLP systems with an NTP server	42
Testing the system	43
5 Installing McAfee DLP Endpoint	45
Verify system requirements	46
Configure the server	47
Install McAfee ePolicy Orchestrator	48
Installing McAfee DLP WCF service	49
Install the McAfee DLP WCF service	50
Add a user in Microsoft SQL Server	50
Run the McAfee DLP WCF installer	53
Troubleshoot the McAfee DLP WCF service	54
Repository folders	55
Creating and configuring repository folders	55
Configure folders on Windows Server 2003	55
Configure folders on Windows Server 2008	56
User and permission sets	57
Create and define McAfee DLP administrators	57
Create and define permission sets	58
DLP permission set options	58
Install the McAfee Data Loss Prevention Endpoint extension	59
Initialize the McAfee DLP Endpoint Policy console	60
Upgrade the license	62
Check in the McAfee DLP Endpoint package to ePolicy Orchestrator	63
Deploy McAfee DLP Endpoint	63
Define a default rule	63
Deploy McAfee DLP Endpoint with ePolicy Orchestrator 4.6	64
Verify the installation	65
Uninstall McAfee DLP Endpoint	66
6 Integrating McAfee DLP Endpoint into a unified policy system	67
Setting up Unified DLP on ePolicy Orchestrator	68
Install the network extension	68
Install the UDLP (host) extension	68
Configure McAfee Agent on ePolicy Orchestrator	69
Add an evidence folder on ePolicy Orchestrator	69
Connecting McAfee DLP Manager and the ePolicy Orchestrator server	70
Gather ePolicy Orchestrator registration information	70
Add an ePolicy Orchestrator database user	70
Register McAfee DLP Manager on ePolicy Orchestrator server	71
Register ePolicy Orchestrator on McAfee DLP Manager	71
Checking the connection	72
Configuring McAfee DLP Endpoint on McAfee DLP Manager	72
Generate a global policy for McAfee DLP Endpoint	73
Maintaining compatibility with installed McAfee clients	73
Add an Agent Override Password	74
Set the manual tagging option	74
Installation and configuration complete	75
Index	77
A	77
B	77
C	77
D	77
E	77
H	77
L	77
M	77
P	77
R	77
S	77
T	77
U	77
V	77

Match case Limit results 1 per page

Configure McAfee DLP Prevent

McAfee DLP Prevent can be set up to process email or webmail by adding the appliance to McAfee DLP

Manager, then configuring it to connect to one or more email or web servers.

Task

Open the

Devices

page in one of two ways:

•

In ePolicy Orchestrator, select

Data Loss Prevention

DLP Sys Config

System Administration

Devices

Add a McAfee DLP Prevent appliance to McAfee DLP Manager.

Select

Actions

Add New Device

Enter the

Device IP or hostname

and

Password

in the value fields.

Click

Add

The

System Administration

page reappears.

From the McAfee DLP Prevent appliance, click

Configure

The

System Configuration

page appears.

Scroll down to the

Smart Host

field.

Configuring more than one Smart Host is not supported.

•

If you are setting up McAfee DLP Prevent to process webmail, leave the

Smart Hosts

field blank.

Smart Hosts are used only with SMTP traffic, and no configuration is needed for a proxy server

because it is already part of the network.

•

If you are setting up McAfee DLP Prevent to process email, type the

Smart Host

IP address to

which the processed email will be routed. (Host names are not supported.)

In some cases, the Smart Host, sometimes known as the

downstream MTA

, might be on the

same machine as the email server. If so, you must add a white list to prevent email looping.

In the

Email Address

field, type in one or more IP addresses separated by commas (no spaces).

These addresses are the only email servers allowed to send messages to McAfee DLP Prevent for

processing.

In the

Email Notification

field, add an administrator's email address to which notification will be sent to

verify the connection.

Click

Send test mail

to test the smart host connection.

Click

Update

SSL

‑

encrypted webmail transmissions might become visible during this process.

Check the email account to which notification was sent. If no verification message was received,

repeat the process.

Configuring McAfee DLP appliances and adding servers

Configuring McAfee DLP Prevent

McAfee Data Loss Prevention 9.2.1

Installation Guide