Creating a custom location object

Before installing ZTNA Connector on client server, you should create a custom location object with the external IP range of your office location or datacenter in Forcepoint ONE SSE as this is needed during ZTNA connector installation.

Steps

  1. In Forcepoint ONE SSE, go to Protect > Objects > Custom Locations. Create a custom location object with the external IP range of your office location where the ZTNA connector (or connectors) are installed. This way Forcepoint ONE SSE will recognize the locations and not attempt to block these IP addresses.


  2. Click the green plus icon to enter a new custom location and add your IP range. You can create multiple location objects, one per location where your ZTNA connectors will be installed.


  3. Navigate back to the Protect > ZTNA page to add the location object(s) you just created.
  4. Under Data Center Public IP Locations, click the green plus icon and then select the location(s) you just created to allowlist them. Then on the right side, you can enter any name for the datacenter.


    This name will be added to the ZTNA app later and used for logging purposes to make it easier for you to identify where the app that users are accessing is located (if you have multiple locations).

    Attention: After adding or updating the locations under Data Center Public IP Locations, you need to wait for 5 minutes before you configure the ZTNA connector. If you configure the ZTNA connector before 5 minutes, you may face an error at the Configure Data Center Name and Installer Key step while configuring it.

Next steps

After completing the above steps, follow one of the options to install the ZTNA connector. You can install the OVA Virtual Appliance within your server or you can install via a ZTNA Deployment Script.