Installing the ZTNA connector using an OVA Virtual Appliance

This feature works via an OVA ZTNA connector that gets installed on your internal servers on the same network the internal apps that you want protected are located.

Before you begin

Make sure that the virtual machine meets following requirements:
  • CPU: 4 cores (Xeon E5 class) for virtual machines (VMs) with hyperthreading
  • Memory: 4GB RAM
  • Disk: 10GB
  • Interface: 1 NIC minimum

Forcepoint ONE SSE also recommends installing the OVA connector on at least 2 servers for redundancy. The OVA is supported on VMware ESXi 6.0 and higher versions.

For sizing guidance, a connector with 4 CPUs equivalent to Intel Xeon Platinum 8000 series processor (Skylake-SP or Cascade Lake) and 16GB RAM is able deliver a sustained throughput of 2Gbps and 2500 simultaneous active connections.

Note: Also, on the Analyze > Connectors > Connector-details page, you can find the actual CPU, memory, machine load and so on of your connectors, which provides more accurate guidance for sizing the connector for your specific applications using that connector.

Follow the below steps to download connector and install it:

Steps

  1. Login into the Forcepoint ONE SSE and navigating to Protect > ZTNA.
  2. On ZTNA page, click on the OVA Virtual Appliance to download the OVA connector and copy the installer key as it is required during the install.


  3. Install the OVA on a hypervisor (example, VMWare) on the same network as the internal apps you wish to protect. When you first log into the OVA, you will be prompted to change the password immediately.
    • Password Requirements: 12 characters, 1 upper, 1 lower, 1 number, and 1 special character.
    • OVA Username: bitglass
    • Default password: bitglass
    • The Container name is derived from the hostname of the VM as Hostname-1