DLP Detection Server Quick Install Guide for Windows
search cancel

DLP Detection Server Quick Install Guide for Windows

book

Article ID: 270089

calendar_today

Updated On:

Products

Data Loss Prevention Data Loss Prevention Core Package Data Loss Prevention Discover Suite Data Loss Prevention Endpoint Discover Data Loss Prevention Endpoint Prevent Data Loss Prevention Endpoint Suite Data Loss Prevention Enterprise Suite Data Loss Prevention Network Discover Data Loss Prevention Network Email Data Loss Prevention Network Monitor Data Loss Prevention Network Monitor and Prevent for Email Data Loss Prevention Network Monitor and Prevent for Email and Web Data Loss Prevention Network Monitor and Prevent for Web Data Loss Prevention Network Prevent for Email Data Loss Prevention Network Protect Data Loss Prevention Network Web Data Loss Prevention Plus Suite

Issue/Introduction

This is a Quick Install guide for the Data Loss Prevention Detection Server

For the full "DLP Quick Install Guides" please visit the following link: DLP Quick Install Guides

Environment

Windows

Cause

The Detection Servers are core components required for Data Loss Prevention.

Resolution

VERSION DISCLAIMER:
Please note that the following instructions are version agnostic, and can generally be used on any currently supported version. As such you will find several variables denoted such as "<DLPversion>" to indicate where a version number "should" be used. You will need to replace these variables with the appropriate version that you are attempting to use. Below are a few examples of such translations...

<DLPversion>  = 16.0, 16.0.1, 16.0.2, 16.1, 25.1 or 26.1
<DLPfullversion>  = 16.0.10000.60631
<ORACLEversion>  = 193000 or 19.3.0.0
<JREversion> = jdk8u322-b06, 8u322b06, jdk8u422-b05-jre, jdk-21.0.4_7-jre, jdk-21.0.9+10-jre

  1. Prerequisites
    1. Download Installers:https://support.broadcom.com/group/ecx/productdownloads?subfamily=Data%20Loss%20Prevention
      DLP Platform Installer: Symantec_DLP_<DLPversion>_Platform_Win-IN_<DLPfullversion>.zip
      1. Unzip the file to see the Detection Server Installer
        Symantec_DLP_<DLPversion>_Platform_Win-IN_<DLPfullversion>\DLP\<DLPversion>\New_Installs\Release\DetectionServer.msi

    2. Install Java:
      Java AdoptOpenJRE Quick Install Guide

    3. Create the Environment Variables:
      Creating Environment Variables Quick Install Guide

    4. Open Firewall Ports:
      Quick Configuration Guide for Windows Firewall



  2. Install the DLP Detection Server:
    1. Run the DetectionServer.msi



    2. Read and accept the license agreement



    3. Set your Installation directory

      Note: You should use the default paths unless there is a specific need to modify the path.
      If you do modify the path, we recommend only modifying the drive and leave the normal path structure.




    4. Set your Data directory

      Note: You should use the default paths unless there is a specific need to modify the path.
      If you do modify the path, we recommend only modifying the drive and leave the normal path structure.

    5. Set the JRE Directory. Specify the path to the JAVA_HOME directory ("jdk8u322-b06-jre" in this example)

    6. Specify which FIPS mode will be used.

      Note: FIPS should never be used unless you have a specific requirement for FIPS.

    7. Select if you will use a new or existing user for the DLP Service user

      Note: If the MSI Installer creates this account, then the standard behavior is that the MSI will also remove this account when it is uninstalled.

    8. Set the Service User username and password.

      Username:       SymantecDLP
      Password: <YourPassword>



    9. Specify the Hostname/ip address and port of the machine running the install

       Host: Hostname or IP Address of the Detection Server
       Port: 8100 (default)



    10. Choose if this install is a standard Detection Server or cluster scanner. As this article is for a Detection Server install, choose "Detection Server".

      Detection Server: Used to install ALL Detection Server types
      Data Node: Used for Grid Scanning
      Worker Node: Used for Grid Scanning



    11. Select Install to being the Detection Server Installation.







  3. Add your Detection Server to the Enforce Console:
    1. Open the Enforce Console
      https://<enforce>/ProtectManager/Logon

    2. Navigate to System > Servers and Detectors > Overview
    3. Select "Add Server"
    4. Select "Software Server"
    5. Select your Detection Server Type:

    6. Specify the Detection Server Details

      Name: The display name of the detection server in the Enforce Console
      Host: Servername or IP Address of the Detection Server
      Port: Port for the detection Server to listen to for Enforce (default is 8100)



    7. Save the Server

The Detection Server should report in within a few seconds. If it does not, simply restart the Detection Server Service (Detection Server), and the SymantecDLP Detection Server Controller Service (Enforce).

Additional Information

Installation: 
     Agent Installation

For additional guides please see the "Getting Started with Data Loss Prevention"

To provide feedback please click on the "Feedback" link or send an email to "[email protected]"

Powered by Wolken Software