EMC Isilon devices do not use the cepp.conf file; however, you must enable configuration change auditing and protocol access auditing in order for Data Governance Edition to perform security scans and collect resource activity on the EMC storage device.
|
Note: On the Data Governance server and all agent servers, you must have a Trusted Root Certificate Authority certificate to validate the Isilon server's HTTP certificate. |
To enable auditing (OneFS web interface)
Connect to the OneFS web interface.
In the Settings pane, select the following check boxes:
In the Audited Zones pane, add the zones to be audited:
In the Event Forwarding pane, enter the following information:
CEE Server URIs: Enter the uniform resource identifier (URI) for the Windows server hosting the Common Event Enabler (CEE) software.
Use the following format: http://<FullyQualifiedDomainName>:<Port>/cee.
For example: http://server.test.abc.com:12228/cee
The default CEE HTTP port is 12228.
Click the Add another input field to add additional CEE server URIs.
Storage Cluster Name: Enter the resolved name of the EMC Isilon cluster.
Use the following format: <ClusterName>.<DomainName>.com
For example: Cluster1.test.abc.com
Data Governance Edition uses the NetApp Data ONTAP file screening policy (FPolicy) to track activities on the filer. This policy allows third-party file screening software to interact with the NetApp filer.
Understanding the following aspects of the deployment process are key to ensuring a successful deployment of NetApp managed hosts:
The service account for the remote agent responsible for scanning the NetApp filer must meet the following minimum permissions:
NetApp filers are added to a Data Governance Edition deployment as managed hosts with remote agents. When selecting an agent for scanning a NetApp filer, take the following into consideration:
The remote agent must be hosted on a machine in the same domain as the NetApp filer device.
|
Note: If you host a remote agent in an external domain to monitor a filer, the agent will NOT record the resource activity data. |
© 2023 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy