Initial Configuration for All Security Modules

Before you begin

Applies to:
  • Forcepoint Web Security and Forcepoint URL Filtering, v8.5.x
  • Forcepoint DLP, v8.5.x, v8.6.x, v8.7.x, v8.8.x, v8.9.x, v9.0, v10.0, v10.1
  • Forcepoint Email Security, v8.5.x
  • Forcepoint Appliances, v8.5.x

Steps

  1. Some of the ports required during installation are no longer needed when installation is complete. For information about the ports required for component communication, as well as details about which components need Internet access, see Default ports for on-premises Forcepoint security solutions.
  2. To avoid performance issues, exclude certain folders and files from antivirus scans. See Excluding Forcepoint files from antivirus scans.
  3. If administrators use Internet Explorer to access the Forcepoint Security Manager, make sure that Enhanced Security Configuration is disabled on their machines.
    In Windows Servers:
    1. Open the Server Manager.
    2. Under Server Summary, in the Security Information section, click Configure IE ESC.
    3. In the Internet Explorer Enhanced Security Configuration dialog box, under Administrators, select the Off radio button, and then click OK.
    Administrators may also need to restore default settings in their browser in order for the Forcepoint Security Manager to display properly in Internet Explorer. To do this, in Internet Explorer go to Tools > Internet Options and select the Advanced tab, then click Reset. When prompted, click Reset again.
  4. Use a supported browser (see System requirements for this version,) to launch the Forcepoint Security Manager and log on using the default account:
    1. Navigate to the following URL:

      https://<IP_address>:9443

      Here, <IP_address> is the IP address of the Forcepoint management server.

    2. Log on as the default admin account, using the password set during installation.
  5. Enter your subscription key or keys. At first startup:
    • The Web Security module of the Security Manager prompts for a subscription key in the Initial Setup Checklist.

      If you have a solution that includes Content Gateway, the key you enter is automatically applied to Content Gateway, as well.

    • The Data Security module of the Security Manager displays the subscription key page. See the “Initial Setup” section of the Forcepoint DLP Administrator Help for more information.
    • The Email Security module of the Security Manager prompts for a subscription key. Enter the subscription key when prompted, or enter later on the Settings > General > Subscription page.
  6. If you did not provide SMTP server details during installation, use the Global Settings > General > Notifications page to specify the SMTP server used to enable administrator password reset functionality and account change notifications.
    To access the Global Settings page, click the gear-shaped icon in the Security Manager toolbar.

    See the Forcepoint Security Manager Help for more information.

  7. If SQL Server Express was installed, verify that SQL Server Browser service is running and that TCP/IP is enabled.
    1. Launch SQL Server Configuration Manager.
    2. In the tree pane, select SQL Server Service.
    3. In the properties pane, make sure SQL Server Browser is running and start mode is automatic.
      Right-click to start the service or change its start mode.
    4. In the tree pane, select SQL Server Network Configuration > Protocols for <instance name>, where <instance name> is the default instance or TRITONSQL2K8R2X (or other instance name you specified).
    5. In the properties pane, make sure TCP/IP is enabled.
      If not, right-click TCP/IP and enable it.

Next steps

Continue with the initial configuration steps for the security solutions you have installed:
  • Initial configuration for web protection solutions
  • Forcepoint DLP initial configuration
  • Forcepoint Email Security initial configuration
  • Content Gateway initial configuration