Forcepoint One Endpoint integration configuration overview

The integration of Forcepoint One Endpoint consists of several general steps.

1

Create or use a certificate authority from the domain where the endpoint clients are located, then import the CA to the SMC as a Trusted Certificate Authority element. For more information, see Knowledge Base article 14099.

2

In the Management Client, create an ECA Configuration element that uses the created CA.

3

Enable Forcepoint Endpoint Context Agent (ECA) on the engine, and use the ECA Configuration element that you created.

4

Export the configuration XML file, and use the file when installing the Forcepoint One Endpoint client on the endpoints. The file contains the details of all the Secure SD-WAN Engines that use the same ECA Configuration element. If additional Secure SD-WAN Engines are added to the configuration, the updated XML configuration file is automatically sent to the endpoint clients when they connect to an Secure SD-WAN Engine.

5

(Optional) To use endpoint client information for access control, define Endpoint Application and Endpoint Settings elements.

6

(Optional) In the policy of the Secure SD-WAN Engine, configure Access rules using Endpoint Application and Endpoint Settings elements as matching criteria.

Access rules to allow communication between Forcepoint One Endpoint components are automatically generated.

7

(Optional) To view endpoint information in log data and reports, enable endpoint information logging in the Access rules.