The management portal provides a centralized location for configuring and managing your organization's data security policies. It also allows for reviewing and investigating any related data security incidents (alerts) and the visualization and management of user activity on related endpoint devices.

Forcepoint ONE Data Security includes best in class predefined compliance templates enabling simple single click compliance for PCI DSS, HIPAA, Intellectual Property, and PII.

Device Control enables organizations to manage the use of removable storage devices connected to user endpoints.

User activity monitoring capability alerts organizations of risky user behavior so they can protect data and reduce risks.

Endpoint management enables organizations to centrally manage all their related endpoints through the Forcepoint ONE Data Security portal, streamlining management and ensuring consistent security throughout the organization.

Access Forcepoint help and support services for assistance and troubleshooting on support.forcepoint.com.

The management portal is supported only on certain web browsers.

When you first sign in, you will be prompted to select an authentication method.

You can change your password at any time when you are signed into Forcepoint ONE Data Security portal.

Forcepoint ONE Data Security portal supports login via SAML compliant identity providers. This helps the user to log in to the portal using SSO.

The cloud portal supports login via SAML identity providers like Okta and Azure.

The My Endpoints tab lists the endpoints, the agents status on the endpoint, and other details such as the operating system running on the endpoint, the domain and logged in user information, etc.

Profiles are a set of attributes that define the endpoint agent behavior. The Default profile can be configured by each tenant to support its sepcific needs. Profiles can also be used to set different behavior for different segments in the same tenant.

This section captures the steps for installing the agent on the endpoints in your organization.

If you have previously installed the agent on your endpoints, you can update to the latest version manually or automatically when a new version is available, or on demand to meet your schedule.

The Endpoint management dashboard and Details panel display the status of the agent running on each endpoint.

Use the Users dashboard to gain a high-level view of user activities in your organization.

Use the Endpoints dashboard to gain a high-level view on the status of agents in your organization.

In the Users panel, you can view per user details on risk level, most recent activity, alerts, and other details.

The Alerts tab displays detailed information on alerts recorded in the organization. For each alert the severity, reporting time, rule name, category, user, reporting products, and other details are displayed in a tabular view.

Devices investigation provides advanced tool to search, analyze, and obtain the device usage insights based on the correlation of users and endpoints.​

The Forcepoint agent has the ability to automatically retrieve attributes from Active Directory to enrich user information reported to the Forcepoint ONE Data Security service. The following table displays the Active Directory attributes used. This information displays on the Overview panel.

Data protection comes with a rich set of predefined policies that cover the data requirements for a wide variety of organizations. Policies can be customized to meet an organization's specific needs, ensuring that sensitive data is always protected from unauthorized access, use, and disclosure.

Device control is a measure of protection that restricts user access to removable storage devices.

Using the User activity monitoring tab, administrators can customize the IOBs (modify the IoB predefined severity and exclude or include certain users and groups).

Policy elements are the building blocks which include the resources and classifiers.

Three types of users have access to the cloud portal: administrators, analysts, and Helpdesk.

Forcepoint DLP for Cloud Email helps prevent data leaks via the email channel.

Audit logs are generated when a create, edit, or delete of a new user, password change​, generation of master, endpoint, or bypass release code​, deleting an endpoint​, exporting data​, changes to OTA update configurations​, changes to device control policy​ etc. happen.

The Advanced tab allows the administrators to integrate with Amazon Replication Service and External Identity Providers.

The Download Neo option on all Settings tabs allows administrators to download the specific agent versions.

User Activity Monitoring can be integrated with On-Premise DLP to enable Risk-Adaptive DLP for on-premise DLP policies. This automates DLP policy enforcement based on the user's risk level.

The Forcepoint ONE Data Security Agent provides the capability to send data to Forcepoint Web Security Cloud for analysis through either a proxy connection or a direct connection.

Generate PDF or CSV reports on users, devices, alerts, and endpoints.