Setup instructions

Provides instructions for first-time users on how to set up the Forcepoint Data Security Cloud | SSE.

The following image is a visual representation of the key steps to complete setup, enhance security, and initiate activity monitoring. There are eight steps to complete the configuration. Clicking on each step in the image will take you to detailed instructions. By configuring this, you can successfully set up Forcepoint Data Security Cloud | SSE.

Initial Configuration

Verify access to the Forcepoint Data Security Cloud | SSE:
1. Activate your account and set your password for Forcepoint Data Security Cloud | SSE when you receive your onboarding email.
2. Sign in to the Forcepoint Data Security Cloud | SSE, Production.
Allow traffic from Forcepoint Data Security Cloud | SSE datacenters and IP addresses:
1. Allow traffic between Forcepoint Data Security Cloud | SSE AWS server IP addresses and corporate security devices.
2. Accept the use of Forcepoint Data Security Cloud | SSE domains for SmartEdge agent as required.
3. Configure API calls to pull updated IP address and datacenter details.
Manage portal access:
1. Create administrator accounts.
2. Configure and assign administrator roles.
3. Configure admin portal access and timeout policies.

Integrate Identity

Configure username domain authentication:
1. Select the authentication method for each username domain.
2. Configure username domain authentication by following the documented steps for the authentication method used.
Import users:
1. Select the import method.
2. Follow the documented procedure for your selected import method.
  - SCIM - create an OAuth access token and configure SCIM integration with Okta or Azure AD.
  - AD Agent
  - REST API (users and groups)
  - Manual

Policy Configuration

Preconfigure policy objects:
1. Configure custom inline popup notifications, user email or group email notifications, and other messages notifications.
2. Configure custom notification files.
3. Add custom locations.
Set up login policies
- Configure a delay login policy.
- Configure a block login policy.
- Set up multi-factor authentication.
- Configure an expire session policy.
- Test the policies and update policy configuration if necessary.
Note: At this point in time, these policies will apply to Forcepoint Data Security Cloud | SSE only. The policies will also apply to managed cloud applications, once configured.
Set up automatic log collection for Shadow IT reporting:
Manually upload logs for Shadow IT discovery.

OR
1. Set up one of the following methods for automatic log collection:
  - Configure Downloadable OVA.
  - Configure Syslog-ng relay.
  - Configure Rsyslog.
2. Map forwarded logs to Forcepoint Data Security Cloud | SSE fields.
3. Review the reports generated in preparation for policy planning.
Configure managed device identification:
1. Discover the methods to distinguish managed devices.
2. Select the managed device identification method you want to use.
  - Configure managed client certificates.
  - Set up SmartEdge agent custom device profiles.
  - Configure SAML attribute match.

Setup traffic steering

Configure and deploy traffic steering for inline protection through SmartEdge Agent for a control group.

Setup DLP and data patterns

Configure DLP and data patterns.

You can integrate with Forcepoint Data Security Cloud | DLP and Forcepoint DLP to enforce DLP policy in Forcepoint Data Security Cloud | SSE:

Integrate with and leverage Forcepoint Data Security Cloud | DLP policies:
1. Import your JSON file to Integrate Forcepoint Data Security Cloud | SSE with the Forcepoint Data Security Cloud | DLP Protection Service.
2. Apply Data Security policy actions to flagged traffic to or from managed cloud applications.
3. Apply Data Security policy actions to data discovered at rest on cloud applications using the cloud API.
Integrate with and leverage Forcepoint DLP policies:
1. Import your JSON file to Integrate Forcepoint Data Security Cloud | SSE with Forcepoint DLP policies.
2. Apply FSM based policy actions to flagged traffic to or from managed cloud applications.
3. Apply FSM based policy actions to data discovered at rest on cloud applications using the cloud API.

Add managed applications

Add pre-defined cloud applications as managed applications.
Add custom cloud applications as managed applications.

Protection for data at rest

Set up API access.
Set up API scanning in Forcepoint Data Security Cloud | SSE.
Configure policy actions for data at rest.

Protection for data in motion

Configure SSO for cloud applications for a control group:
Review this video for more information.
1. Select and deploy the SSO method appropriate for your application and organization.
  This may be SAML relay or SAML ACS proxy.
2. Verify access to the cloud application.
Configure inline policies for managed cloud applications for a control group:
1. Configure contextual access control and set proxy policy actions.
2. Test the inline policies.
3. Update policy configurations if necessary.