Changing the hostname for Forcepoint DLP management components

Before you begin

Note:

Applies to:

  • Forcepoint DLP, v8.5.1, v8.6.x, v8.7.x, v8.8.x. v8.9.x

Perform this task during off hours, or route traffic around the Forcepoint DLP infrastructure (disabling connectors, ICAP, etc.) while the task is being performed.

It is assumed that the hostname of the management server has already been changed, if not see Changing the hostname of the Forcepoint management server.

Note: To change both the IP address and hostname of a server, you must complete the entire process of updating one before starting to change the other (and wait for all endpoints to be updated).

Steps

  1. To stop the protector:
    1. Log on to the protector as root.
    2. Enter the following command:

      service pama stop

  2. On the management server, launch the Forcepoint Security Installer.
    • If installer files were preserved after the initial installation, use the Forcepoint Security Setup link in the Start > Forcepoint menu or on the Start screen to launch the installer.
    • If installer files were not preserved, double-click the installer executable.
  3. In the installer, select the Modify link for Forcepoint DLP.
  4. Click Next in the installation wizard until the “Local Administrator” screen is displayed.
  5. Select the new server name and the correct user name (in the form “NEWNAME\ UserName”).
  6. To start the protector:
    1. Log on to the protector as root.
    2. Enter the following command:

      service pama start

  7. Click Next to finish the modification.
  8. (Optional) In the Data Security module of the Security Manager, change the server name in the following places:
    1. Go to the Settings > System Modules page.
    2. Click the Forcepoint DLP Management Server.
    3. One at a time, click the Endpoint Server, Policy Engine, Forensics Repository, SMTP Agent, PreciseID Database, and Crawler, and change the server name in the Name field.
  9. Click Deploy.
    Note: If any endpoints are not connected to the network when settings are deployed, they will not be updated. In this case, you must create a new endpoint package using the package-building tool, and use SMS or a similar mechanism to install the new package on these endpoints.
  10. Verify that new events appear in the traffic log, the system log doesn’t display errors, the endpoint status shows that endpoints are synchronized, and that new incidents are written into the data usage incident management screen.