Getting started

Deployment types

Draft comment: Dipshikha.Basu
Only compact description of each type + link to the install section for each type.

Following types of deployment are possible for Forcepoint DSPM product:

Forcepoint DSPM On-prem deployment

In this type of deployment, the software is installed and run on a customer owned server (usually a VM). The server (or VM) in customer premise may be disconnected from Forcepoint servers. Each of the on-prem deployments mentioned below may or may not be configured as High-availability (HA) deployments.

  • Airgap: Airgap installation refers to the process of installing software—in this case, the DSPM management infrastructure (K3s) is deployed in an environment that is isolated from the public internet.
    • All necessary files, images, and dependencies are downloaded in advance and then manually transferred (or imported) into the target environment without requiring a live internet connection during installation.
    • Air gapped deployments cannot receive automatic product updates.
  • Helm-online: This type of deployment needs an internet connection to a remote repository server and uses charts and container images from a remote image repository.
  • Rancher-based (Recommended): This type of deployment requires a constant internet connection, although the deployment can continue even if disconnected. Fleet is used to install/upgrade Helm charts. Charts are installed from an online repository - imported automatically by Fleet. Automatically updates to the latest version of the software (except when automatic updates are disabled).
    • DSPM management infrastructure (K3s) is installed on customer infrastructure.
    • Rancher platform pushes DSPM software components (Pods) to the Linux-based K3s host server.
    • Requires a tech support case to be submitted immediately after K3s installation and Rancher registration. Forcepoint Tech support pushes required software components from Rancher to the K3s host server per the customer’s license and subscription entitlements.

Forcepoint DSPM cloud deployment

In this type of deployment, the software is running on a public cloud platform AWS. And we can have the following types of deployments:

  • Single-tenant SaaS: Securely hosted on public cloud infrastructure running on AWS and behind a Cloudflare WAF. Provisioned and managed completely by Forcepoint Support. This is a single-node and not highly-available deployment.
  • Multi-tenant SaaS: Support for this type of deployment will be available as part of future release.
  • Trial SaaS: This is a multi-tenant environment that is integrated with Forcepoint Data Security Cloud and you can log in using the common cloud console just like other integrated Forcepoint Data Security Cloud applications.

If you are wanting to use the cloud installation, then navigate to: Sign in to the portal.