Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
Configuring a gateway server in endpoints
A gateway server is an HTTP proxy server, and the server’s proxy settings can be configured manually on an individual endpoint or configured in bulk for a group of endpoints.
Steps to configure a gateway server on an individual endpoint:
- Open the Internet Properties window on the endpoint using one of the following methods:
- Type inetcpl.cpl in the Run window.
- Open Internet Explorer, click the settings symbol in the top-right corner, and then select Internet Options.
- Open the Control Panel and select Internet Options.
- On devices running Windows 10, you can also navigate to Settings > Network and Internet > Proxy.
- In the Internet Properties window that opens, navigate to the Connections tab and click the LAN settings button.
- In the Local Area Network (LAN) Settings window that appears:
- Uncheck the Automatically detect settings checkbox.
- Uncheck the Use automatic configuration script checkbox.
- Check the Use a proxy server for your LAN option.
- Enter the IP address of the gateway server in the Address text box and include its port number in the Port text box.
- Click OK.
The gateway server is now configured on the endpoint.
Steps to configure gateway servers on multiple endpoints via a Group Policy Object (GPO):
- Launch the Group Policy Management console using any of the following methods:
- Navigate to Server Manager > Tools > Group Policy Management Console.
- Press Win+R and in the Run dialog box that appears, type gpmc.msc and click OK.
- The Group Policy Management Console window opens. You can create a new GPO or modify an existing one.
- To create a new GPO, right-click the domain, site, or OU where you want to apply the policy and click Create a GPO dialog in this domain and Link it here.
- Enter a name for the GPO in the New GPO dialog box and click OK. The GPO is now created.
- Right-click the newly created GPO or an existing one and select Edit.
- In the Group Policy Management Editor, navigate to User Configuration > Preferences > Control Panel Settings > Internet Settings.
- Right-click Internet Settings and select New > Internet Explorer 10.
- In the IE Settings window, go to Connection and click the LAN settings button.
- In the Local Area Network (LAN) Settings window that appears:
- Uncheck the Automatically detect settings checkbox.
- Uncheck the Use automatic configuration script checkbox.
- Check the Use a proxy server for your LAN option.
- Enter the IP address in the Address text box and include the port number in the Port text box.
- Click OK.
The gateway server is now configured across multiple endpoints.
To configure gateway servers on multiple endpoints via a Proxy Auto-Configuration (PAC) script, update your PAC script with the IP address and port number of the gateway server.
Installing a CA certificate
When deep packet inspection is enabled on the gateway server, the server will sign the SSL certificates of all websites with DataSecurity Plus' CA certificate. Thus, the endpoints must trust the CA certificate that is created in DataSecurity Plus.
- To create a new CA certificate, follow the steps mentioned on this page.
- To assign a new CA certificate or modify the existing certificate, follow the steps on this page.
- To download a CA certificate that you have created, follow the steps given here.
Once downloaded, the CA certificate can be installed on individual endpoints manually or on multiple endpoints via a GPO.
Steps to install the CA certificate on individual endpoints manually:
- Double-click the downloaded CA certificate and click Install Certificate.
- In the Certificate Import Wizard window, choose Place all certificates in the following store and then choose Trusted Root Certification Authorities.
- Click Next.
The endpoint will now trust the CA certificate you generated.
Steps to install the CA certificate on multiple endpoints via a GPO:
To install the certificate on all client devices, create a group policy in the domain controller in which end-user settings are configured.
- In the domain controller, navigate to Start > Administrative Tools > Group Policy Management.
- Right-click your domain and select Create A GPO In This Domain And Link It Here.
- Enter a suitable name for the GPO and click OK.
- Right-click the newly created GPO and click Edit. The Group Policy Management Editor opens.
- In the Computer Configuration, navigate to Policies > Windows Settings > Security Settings > Public Key Policies.
- Right-click Trusted Root Certification Authorities and select Import.
- Click Browse and select the generated CA certificate.
- Click Finish > OK.
The client devices will now trust the CA certificate you generated.