Standalone Quarantine Setup - Symantec Messaging Gateway
search cancel

Standalone Quarantine Setup - Symantec Messaging Gateway

book

Article ID: 257375

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

Standalone Quarantine Setup - Symantec Messaging Gateway 

Environment

Release : 10.8.0

Cause

How to configure standalone quarantine?

Resolution

A. Installation

  • Install latest SMG build 10.8.0 using ISO. During bootstrap configuration, select a new role - '4. Quarantine Only'.
  • Provide the BCC IP during bootstrap setup.

B. Registration on BCC

  • On BCC UI, register the standalone quarantine server.
  • Go to Administration > Hosts > Configuration > Add
  • Select 'Add a new quarantine server' and provide further details.
  • Note - If standalone quarantine server is not registered on BCC, user won't be able to login remote quarantine UI.

C. Create/Export Certificates on Remote Quarantine

  1. Login to remote quarantine UI as admin.
  2. Go to Administration > Settings > Certificates > TLS & HTTPS Certificates.
  3. Create one self signed certificate. e.g. 'quarantine-only-cert
  4. Assign the 'quarantine-only-cert' to the Control Center through page - Administration > Settings > Control Center > Certificates.
  5. Export the 'quarantine-only-cert' to the file.

D. Enable ActiveMQ on BCC 

  1. On BCC UI, create two self signed certificates. One for BCC’s tomcat (the HTTPS cert) e.g. 'bcc-cert' and One for BCC’s activemq e.g. 'bcc-activemq'. Please make sure Common name will be assigned properly - IP or hostname that reflects your environment. SANs can be discarded.
  2.  Assign the 'bcc-cert' to the Control Center through page - Administration > Settings > Control Center > Certificates.
  3.  Import remote quarantine cert i.e. 'quarantine-only-cert' (created in step C.3) under 'Administration > Settings > Certificates > Application'
  4. Enable the ActiveMQ on BCC. Go to Administration > Settings > Control Center > Access
  5. Select checkbox 'Enable Control Center remote management' and provide user credentials and SSL certificate as 'bcc-activemq'. Click on 'Save' button.
  6. Two certificates gets created under 'Administration > Settings > Certificates > Application'
    a. BCC_HTTPS_CERT
    b. BCC_REMOTE_MANAGEMENT_CERT
  7. Export the 'BCC_REMOTE_MANAGEMENT_CERT' certificate to file.

E. Enable Remote Management Connections on Standalone Quarantine

  1. Login to Standalone quarantine UI as admin.
  2. Import 'BCC_REMOTE_MANAGEMENT_CERT' (from step D.7) under 'Administration > Settings > Certificates > Application'
  3. Enable remote management connection on standalone quarantine UI. Go to Administration > Settings > Control Center > Access
    Select checkbox 'Enable Control Center remote management' and provide BCC IP and user credentials and Click on 'Test' button. It should be successful.
  4. Click on 'Save' button.

 

Additional Information

For more details about  Standalone Quarantine please check out the relevant documentation section

Powered by Wolken Software