Integrate McAfee Logon Collector with Forcepoint NGFW
Integrating Forcepoint NGFW with McAfee® Logon Collector provides transparent user identification for access control by user.
Note: McAfee Logon Collector is only supported in Forcepoint NGFW version 5.8 or
later.
For more details about the product and how to configure features, click Help or press F1.
Steps
Logon Collector Properties dialog box
Use this dialog box to define the properties of a Logon Collector.
Option | Definition |
---|---|
General tab | |
Name | Specifies the unique name of the element. |
IP Address | Specifies the server IP address. |
Resolve | Automatically resolves the IP address of the host. |
Location | A Location is needed if NAT is applied between an engine and the computer on which the Logon Collector is installed. |
Contact addresses | A Contact Address is needed if NAT is applied between a Firewall or Management Server and the Logon Collector.
|
Port
(Optional) |
The port on which the Logon Collector communicates with the engine. If you change the port from the default, you must configure the same port in the Logon Collector Properties on the Windows system. You must also change the rule that allows communication between the engine and the Logon Collector. |
Cache Expiration | Set the length of time before the cache expires. |
High Availability | |
IP Address | Enter the IP address for connections to a secondary Logon Collector server. |
Port
(Optional) |
Enter the port number for connections to a secondary Logon Collector server. |
Category | Includes the Logon Collector in predefined categories. |
Select | Opens the Category Selection dialog box. |
Tools Profile | Adds custom commands to the Logon Collector right-click menu. |
Select | Opens the Select Element dialog box. |
Comment | An optional comment for your own reference. |
Option | Definition |
---|---|
Certificate tab | |
Certificate | Shows the name of the selected certificate. |
Import | Opens a file browser to import a certificate file. |
Export | Opens a file browser to export a certificate file. |
Option | Definition |
---|---|
NAT tab | |
Firewall | Shows the selected firewall. |
NAT Type | Shows the NAT translation type: Static or Dynamic. |
Private IP Address | Shows the Private IP Address. |
Public IP Address | Shows the defined Public IP Address. |
Port Filter | Shows the selected Port Filters. |
Comment | An optional comment for your own reference. |
Add NAT Definition | Opens the NAT Definition Properties dialog box. |
Edit NAT Definition | Opens the NAT Definition Properties dialog box for the selected definition. |
Remove NAT Definition | Removes the selected NAT definition from the list. |
Internal Certificate Authority Properties dialog box
Use this dialog box to view the details of an Internal Certificate Authority element or to export the certificate of an internal certificate authority.
Option | Definition |
---|---|
General tab | |
Name | The name of the element. |
Subject Name | The identifier of the certified entity. |
Public Key Algorithm | The algorithm used for the public key. |
Key Length | The length of the key in bits. |
Serial Number | The sequence number of the certificate. The number is issued by the CA. |
Signature Algorithm | The signature algorithm that was used to sign the certificate. |
Signed By | The CA that signed the certificate. |
SubjectAltName | The subject alternative name fields of the certificate. |
Valid From | The start date of certificate validity. |
Valid To | The end date of certificate validity. |
Fingerprint (SHA-1) | The certificate fingerprint using the SHA-1 algorithm. |
Fingerprint (SHA-512) | The certificate fingerprint using the SHA-512 algorithm. |
Status | The status of the internal certificate authority. |
Certificate tab | |
Export | Click Export to export the certificate of the internal certificate authority. |