Web Security Service (WSS) log suppression when connecting with older versions of SEP

Web Security Service

SEP Web Traffic Redirection (WTR)

Starting April 16, 2021, a series of measures were taken to prevent the generation of access log lines for users connecting to WSS using SEP Web Traffic Redirection (WTR).

With changes on May 4, 2021, this included a measure to prevent the generation of access log lines for SEP Web Traffic Redirection (WTR) WSS user web requests to the same host after the first request (i.e. the first request to a host is logged but subsequent requests to the same host are not).

These changes were made out of an abundance of caution for data integrity in concert with an update to SEP endpoint clients, which included enhanced authentication features. As organizations adopt the SEP update, access logging for all web requests will be restored automatically.

At no time is the user traffic unprotected, even when lines are suppressed.

Access log lines that were suppressed are not retrievable. 

The above change in access logging only affects customers using SEP WTR to connect to WSS, and will be automatically restored when the SEP NTR Engine 1.2.0.137 update is applied.