Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
NetApp server configuration
DataSecurity Plus helps you monitor file and folder events in NetApp CIFS servers in real time and provides detailed insights on user operations.
Minimum privileges required for NetApp server auditing
DataSecurity Plus requires privileges to the service account running DataSecurity Plus as well as management credentials to create FPolicy required to perform file auditing in NetApp servers.
User accounts required for configuring NetApp CIFS servers
The DataSecurity Plus user is run by the service account to access shares and AD information if needed. Domain admin credentials or these minimum privileges are required for this account.
In addition to the domain user account configured in DataSecurity Plus, a dedicated NetApp user needs to be created for DataSecurity Plus. This is required to manage the FPolicy stored in NetApp. Separate user privileges are required and can be created using the steps mentioned below.
Privileges required for DataSecurity Plus NetApp user
Create a dedicated DataSecurity Plus NetApp user and provision them with the following commands and permissions. Different versions of NetApp OS require varying commands and permissions.
Command | Type | Permission required | NetApp ONTAP version |
---|---|---|---|
security login rest-role create -role dsp_role -api /api/protocols/fpolicy | REST API | Full access | 9.6 and above |
security login rest-role create -role dsp_role -api /api/protocols/cifs | REST API | Read only | 9.6 and above |
security login rest-role create -role dsp_role -api /api/svm/svms | REST API | Read only | 9.6 and above |
security login rest-role create -role dsp_role -api /api/cluster | REST API | Read only | 9.6 and above |
security login role create –role dsp_role –cmddirname “vserver fpolicy” | Command | Full access | Below 9.10 |
security login role create –role dsp_role -cmddirname “volume” | Command | Read only | Below9.6 |
security login role create –role dsp_role –cmddirname “vserver cifs” | Command | Read only | Below 9.6 |
security login role create -role dsp_role -cmddirname "system node" | Command | Read only | Below 9.6 |
Note: Users can be created for a cluster or a particular Vserver using the above commands. To create a role for a particular Vserver, add -vserver <vserver_name> in the above commands.
User login methods to be used when creating roles
The user created with the above roles can either be a domain user or local user, but the account should have access to the target NetApp server via ONTAPI or HTTP methods depending on the NetApp OS version.
ONTAP versions earlier than 9.6 | ONTAP versions later than 9.10 | ONTAP versions 9.6-9.10 |
---|---|---|
ONTAPI | HTTP method | Both ONTAPI and HTTP methods |
Configuring a NetApp server
To configure a NetApp server, follow the steps listed below:
- Log in to the DataSecurity Plus web console.
- Configure the domain in which the file server you want to configure is located.
- Select File Audit from the application drop-down.
- Go to Configuration > Data Source > NetApp Server.
- Click + Add Server.
- Select the preferred domain from the Domain Name drop-down. Select the target NetApp Server Name and click Next. You can also enter a new server using the Enter Server Name textbox.
- Select the Shares you want to audit and click Next. Ensure that the user configured in DataSecurity Plus has minimum privileges.
- Under Management Details, choose Vserver or Cluster and enter the Management IP.
- Enter the User Name and Password of a NetApp user account as per the privileges mentioned in the minimum privileges for NetApp auditing section.
- Specify the Port number through which communication should happen and click Next.
- Under the Collector Server tab, choose the Domain Name and Collector Server Name, specify the Collector Port, and click Next.
- The Review Summary tab will give you an overview of the configured NetApp server, Shares, Management Details, and the Collector Server. After verifying the details, click Configure.
Note: NetApp management details are required to manage FPolicy.
Note: For NetApp server auditing with DataSecurity Plus, configuring a collector server is required. The collector server acts as an intermediary server that collects file access events from the NetApp server and forwards them to the DataSecurity Plus server. You may configure Windows file servers as collector servers. However, the Windows client OS cannot be configured as collector servers. No separate license is required for configuring collector servers.
Updating NetApp server configurations
To update a configured NetApp server, follow the below given steps as per your server requirements:
- In theFile Auditapplication drop-down, go to Configuration > Data Source > NetApp Server.
- Select the NetApp server you want to update. Here, you can:
- Add shares by clicking the Add Share link and selecting the share you want to add.
- Update the list of shares available for configuration in the server by clicking the refresh icon at the top-right corner of the table.
- Delete shares by clicking the Edit link and selecting the shares you want to delete.
- To modify a collector server, delete the server under collector details and add one by clicking +Add Collector.
Note: You can also view reports by clicking the View Reports link.
Editing management IP details
To update the management IP details of a configured NetApp server, follow the below given steps:
- Log in to your DataSecurity Plus web console.
- Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers.
- Click View/Edit Details in the NetApp server whose management IP details you want to edit.
- Provide the IP address of your Cluster or Vserver depending on your environment in the Management IP tab.
- Enter the Username and Password.
- Select the Port type through which communication should happen and provide the port number.
- Click Save.
Deleting NetApp server configurations
To delete a configured NetApp server:
- Log in to your DataSecurity Plus web console.
- Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp server(s).
- Choose the target NetApp server from the configured NetApp panel.
- Click the Delete icon at the top-right corner of the active tab.
- Select OK to delete the NetApp server from DataSecurity Plus.
Note: Once deleted, servers will no longer be audited. However, previously audited data will be retained.
Troubleshooting NetApp configuration
The below table lists the steps to resolve common errors that can arise while setting up NetApp auditing.
Error message displayed during setup | Steps for resolution |
---|---|
Error in getting shares. The network path was not found - Error code: 35 |
This error occurs when a share is inaccessible. Ensure that:
Ensure that the ports via which SMB shares are accessed are available. |
Access Denied Error Code: 5 | Service account running DataSecurity Plus requires the following permissions:
|
Awaiting NetApp server response | The communication status between the DataSecurity Plus server and NetApp server is currently processing. Check again after some time to know the status. |
Failed to authenticate the server. Enter the correct username and password and try again. |
The credential provided in the Management IP details is incorrect. Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers. Click View/Edit Details in the NetApp server to edit user and password credentials. |
Failed to connect. Please check the Management IP, port, and protocol. - No connection |
Ensure that the Management IP details are updated and correct. Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers. Click View/Edit Details in the NetApp server to edit user and password credentials. |
Failed to authenticate the NetApp server. Enter the correct username and password and try again. |
Ensure that the Management IP details are updated and correct. Go to File Audit > Configuration > Data Source > NetApp server under Data Source. You'll see the configured NetApp servers. Click View/Edit Details in the NetApp server to edit user and password credentials. |