Proofpoint | ObserveIT On-Premises Insider Threat Management
Redirecting ObserveIT Agents for mTLS Infrastructure
This topic describes how to redirect the ObserveIT Agent after configuring your infrastructure with mTLS authentication.
mTLS is the recommenced authentication for an employee working from home (WFH) infrastructure. ObserveIT Agents are installed on the remote endpoints and connect to the Application servers.
Prerequisites:
You must complete the following before redirecting the ObserveIT Agent. If you do not complete the prerequisites, communication between the Agents and Application servers may be lost and you will need to reinstall the Agents to correct this.
Validate:
- Required certificate (and all its prerequisites) is installed on the Agents before enabling mTLS authetication
- Required certificate (and all its prerequisites) is installed on the Application servers before enabling mTLS authentication
- Required certificate (and all its prerequisites) is installed on both load balancers (DMZ and LAN) enabling the mTLS authentication
- TLS termination is enabled on both load balancers (DMZ and LAN)
-
From the Configuration tab in the ObserveIT Web console, select Security & Privacy and select the Security tab.
- In the Load Balancer area, complete the following for the Application servers Load balancer address:
- http or https
- FQDN/IP
- Port
-
Click Update.
Related Topic: