Forcepoint One Endpoint integration configuration overview

The integration of Forcepoint One Endpoint consists of several general steps.



1
Create or use a certificate authority from the domain where the endpoint clients are located, then import the CA to the SMC as a Trusted Certificate Authority element. For more information, see Knowledge Base article 14099.
2
In the Management Client, create an ECA Configuration element that uses the created CA.
3
Enable Forcepoint Endpoint Context Agent (ECA) on the engine, and use the ECA Configuration element that you created.
4
Export the configuration XML file, and use the file when installing the Forcepoint One Endpoint client on the endpoints. The file contains the details of all the Secure SD-WAN Engines that use the same ECA Configuration element. If additional Secure SD-WAN Engines are added to the configuration, the updated XML configuration file is automatically sent to the endpoint clients when they connect to an Secure SD-WAN Engine.
5
(Optional) To use endpoint client information for access control, define Endpoint Application and Endpoint Settings elements.
6
(Optional) In the policy of the Secure SD-WAN Engine, configure Access rules using Endpoint Application and Endpoint Settings elements as matching criteria.
Access rules to allow communication between Forcepoint One Endpoint components are automatically generated.
7
(Optional) To view endpoint information in log data and reports, enable endpoint information logging in the Access rules.