Registering an appliance

Important:

Single sign-on is supported when the deployment includes the Security Appliance Manager.

When you register Forcepoint appliances in the Security Manager, you can configure single sign-on. When you click the Single Sign-On button, a page displays that describes how to manage your appliance using the CLI, and provides access to the Content Gateway Manager if Content Gateway is running on the appliance.

To register a new appliance with the Security Manager:

  1. Click Register Appliance.

    The Register Appliance window displays.

  2. In the field IP address, enter the IP address for network interface C on the appliance.
  3. To configure single sign-on from this Security Manager to the appliance, mark the check box Enable single sign-on from the Security Manager.
  4. Enter the administrator password for the appliance.
  5. To specify Security Manager administrators who have single sign-on permissions for this appliance, click User Permissions to expand the User Permissions section.
  6. To give an administrator single sign-on permissions, mark the check box next to the user name in the Available users list, and then click the right arrow (>) to add the administrator to the Users with access list.
    Note: Global Security Administrators and administrators with full appliance access are grayed out in the Users with access list because they have single sign-on access by default, and this cannot be changed.
  7. Click OK.

    If configuration is successful, an Appliance Details popup appears confirming the appliance has been added to the Security Manager, and displaying information retrieved from the appliance.

    An appliance can only be configured for single sign-on from one Security Manager instance. If another Security Manager instance has already registered an appliance with single sign-on, an error message appears. Select Transfer registration to transfer the single sign-on to this instance of the Security Manager, or select Register without Single Sign-On to register the appliance and preserve single sign-on configuration on the other Security Manager.

  8. To add more appliances, click Add Another Appliance and repeat steps 2 to 7 above. If you are finished adding appliances, click Done.

If the Security Manager cannot connect to the IP address that you enter, verify the following:

  • The IP address you entered is the correct one for the appliance’s C interface.
  • The appliance and Security Appliance Manager are both running.
  • The system clock on the Security Manager machine matches the clock on the appliance to within 1 minute.
To refresh the information for an appliance:
  1. Click the arrow next to the current appliance IP address to expand the appliance information, and click Refresh Details.
  2. To refresh all of the appliance information on this page, click Refresh All Appliances.
To remove an appliance from the list:
  1. Click the arrow next to the current appliance IP address to expand the appliance information, and click Unregister.

    A confirmation page displays.

  2. Click Yes to confirm.

    The appliance is removed.