New features
This release of the product includes the following new features. For more information, see the Forcepoint ONE SSE Admin Guide.
Pre-defined DLP patterns for standard file types
Once feature is enabled on your tenant, the
page displays three predefined DLP patterns for standard file types which can be used while configuring inline (ZTNA and CASB), SWG content and API policies to detect or block content based on file types.To know about the Pre-defined DLP patterns for standard file types in detail, refer to Understanding Predefined File type based DLP patterns.
Forcepoint ONE Data Security
Forcepoint ONE Data Security now seamlessly integrates with Forcepoint ONE SSE, enabling the direct application of Forcepoint DLP from the Cloud. This advancement eliminates the necessity for an on-premises Forcepoint Security Manager (FSM), streamlining data protection processes.
To know about the Forcepoint ONE Data Security application, refer to Forcepoint ONE Data Security Online Help.
The procedure to integrate Forcepoint ONE SSE with Forcepoint ONE Data Security is similar to integrating with on-premises FSM. Refer to Configuring FSM controlled policies for CASB and SWG channels to know in detail.
Integration with the Web Security Application
Forcepoint Web Security is a flexible web protection solution that provides fine-tuned control over your users’ web access, while providing comprehensive protection against web threats such as viruses, malware, data loss, and phishing attacks.
You can access the Web Security application only from the waffle switcher of Forcepoint ONE SSE only if your tenant is assigned and licensed for the Web Security application.
To know how to access the Web Security application from Forcepoint ONE SSE, refer to Accessing Forcepoint Web Security application.
Support Forcepoint ONE SSE Anti-malware engine along with FSM-based policy
Forcepoint ONE SSE now allows you to select only Anti-malware data patterns that you have purchased as part of Forcepoint ONE SSE subscription along with the Forcepoint DLP data pattern.
If both the FSM-based policy (with Forcepoint DLP data patterns) and another API policy (with Anti-malware data pattern) return actions, the most severe action will be enforced. To know order of severe actions, refer to Understanding Forcepoint DLP data pattern in API setup and policies.
Support for newer RedHat releases for ZTNA Deployment Script
The ZTNA Deployment Script is now supported on RedHat Linux OS 8.9 and 9.3 releases starting from this release. To know more about ZTNA Deployment Script, refer to Installing the ZTNA connector.
Standardizing Waffle switching across platform products
Forcepoint ONE SSE renamed Admin to Insights as a part of standardizing products across platform.
SmartEdge Agent Deployment Guidance
Forcepoint ONE SSE added the following text in a rounded rectangular text box with yellow alert icon in it under the Download Agent section of the page.
It is critical to meet the device
requirements, follow the SmartEdge agent deployment guide, and exclude agent services, processes, file paths and signing certs from EDR, e.g. Carbon Black, and antivirus interaction causing instability or quarantining.
This provides straightforward access to the deployment guide and essential documentation, encouraging users to adhere to the installation procedures. A critical step in the installation process is to exclude the agent's file paths and registry entries from antivirus scans on end devices. This precaution helps to avoid conflicts with the agent and reduces the risk of a Blue Screen of Death (BSOD) on PCs.
Additionally, the default configuration of the Enable ZTNA Driver checkbox is changed as follows:
- For new customers - The Enable ZTNA Driver checkbox is unselected by default.
- For existing customers - Retains the existing default configuration, that is the Enable ZTNA Driver checkbox is selected by default.