ECA configuration overview

The configuration of ECA consists of several general steps.

1

Create or use a certificate authority from the domain where the endpoint clients are located, then import the CA to the SMC as a Trusted Certificate Authority element. For more information, see Knowledge Base article 14099.

2

In the Management Client, create an ECA Configuration element that uses the created CA.

3

Enable ECA on the engine, and use the ECA Configuration element that you created.

4

Export the ECA configuration XML file, and use the file when installing the ECA client on the endpoints. The file contains the details of all the NGFW Engines that use the same ECA Configuration element. If additional NGFW Engines are added to the configuration, the updated XML configuration file is automatically sent to the endpoint clients when they connect to an NGFW Engine.

5

(Optional) To use endpoint client information for access control, define Endpoint Application and Endpoint Settings elements.

6

(Optional) In the policy of the NGFW Engine, configure Access rules using Endpoint Application and Endpoint Settings elements as matching criteria.

7

(Optional) To view endpoint information in log data and reports, enable endpoint information logging in the Access rules.

Access rules to allow communication between ECA components are automatically generated.