Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
Configuring two-way SSL-enabled web applications
To allow access to two-way SSL-enabled web applications via the Cloud Protection Gateway Server, follow these two steps:
Step 1: Import a client certificate
Client certificates confirm the legitimacy of the client by the server. To import one to DataSecurity Plus, follow the below steps:
- Log in to the DataSecurity Plus web console.
- Select Cloud Protection from the application's drop-down.
- Go to Configuration > Certificate > Certificate Trust Store and click Configure Two-way SSL.
- Click Import a Client Certificate and type in the client Website.
- Select the Client Certificate and provide the Client Certificate Password.
- Click Find Certificate Issuer to validate the issuer certificate. If the trust store already has the Issuer CA, then the issuer name will be displayed under Client Certificate Password.
- If the issuer certificate doesn't exist already in the trust store, click Browse and select the certificate file.
- Click Import to add the certificate.
Note: To download or view an imported client certificate, click the download icon in the Actions column of the respective certificate in the Configure Two-way SSL page.
Note: P12 and PFX certificate formats are supported.
Step 2: Upload an issuer certificate
Issuer certificates confirm the legitimacy of the client certificate. To upload one, follow the below steps:
- Under the issuer column, click the Upload link corresponding to the target certificate to select the issuer certificate from your machine.
- Click Import.
In case the issuer certificate is deleted, you can re-upload it by following the above steps.
Note: Issuer certificates can be .cer (DER encoded), .cer (Base64 encoded), .crt, and .der.