Amazon Replication Service

Configure the Forcepoint ONE Data Security cloud portal with the Amazon S3 bucket. This allows replicating the objects like Alerts, Events, or Audit logs from the Forcepoint ONE Data Security cloud portal to the Amazon S3 buckets.

Steps

  1. Sign into the AWS Management Console and click the Amazon S3 option. The default Buckets page opens.
  2. Under the Buckets section, from the top bar, click the Create bucket button.
  3. On the Create bucket dialog:
    1. In the Bucket name field, enter a name for your bucket.
    2. Scroll down for the Bucket Versioning section, select the Enable radio button. Keep the other sections of the Create bucket dialog with no changes.
    3. Scroll down and click the Create bucket button. It toggles back to the Amazon S3 Buckets page and a success message is prompted on the screen. The new S3 bucket is created now.
  4. On the Buckets section, search for the new S3 bucket name in the search bar.
  5. From the search result, select your new S3 bucket. The new S3 bucket page opens.
  6. Under the Properties tab, from the Bucket overview section, copy the Amazon Resource Name (ARN).
  7. On the top right corner of the screen, click the signed-in details.
  8. From the dialog, copy the Account ID.
  9. Open Forcepoint ONE Data Security cloud portal, navigate to Settings > Advanced > Amazon Replication Service.
  10. Under the Configuration wizard section, click the Start Configuration button. The configuration section opens.
  11. Under the Step 1, in the ARN address field, enter the copied Amazon Resource Name (ARN) and in the Account ID field, enter the copied Account ID from the Amazon S3 bucket.
  12. After entering the details in the Step 1, under the Step 2, in the Replication policy section, Replication policy appears. Copy the Replication policy.
  13. Navigate to Amazon S3 Buckets page, under the new S3 bucket, select the Permissions tab.
  14. On the Permissions page, in the Bucket policy section, click the Edit button.
  15. In the Policy field, enter the copied Replication policy from the Forcepoint ONE Data Security cloud portal. Scroll down and click the Save changes button.
  16. Once a success message is prompted on the top of the screen, navigate to Forcepoint ONE Data Security cloud portal > Settings > Advanced > Amazon Replication Service. Under the Step 3, click the Activate button. New Amazon Replication Service widget will open.

    In the Status section, display the status Validation in progress. After a few minutes, the Status changes to Running.

  17. Once the status changed to Running, under the Choose which object to replicate section, check the Alerts, Events, or Audit log check boxes.

    You must choose at least one object to replicate. The toggle button is default Enabled to keep objects synchronized with Amazon S3 bucket.