Endpoint web control overview guide

Similar documents
Sophos for Virtual Environments. configuration guide -- Sophos Central edition

Sophos Mobile. server deployment guide. Product Version: 8.1

Sophos Mobile. server deployment guide. product version: 8.6

Sophos Endpoint Security and Control standalone startup guide

Sophos Mobile. server deployment guide. product version: 9

Sophos Central Enterprise. Help

Sophos Central Enterprise

Sophos Firewall Configuring SSL VPN for Remote Access

Sophos for Virtual Environments. startup guide -- Sophos Central edition

Sophos Connect. help

Content for Sophos- Theory and lab session

Sophos Enterprise Console

Sophos Enterprise Console

Sophos Anti-Virus for NetApp Storage Systems

Sophos Deployment Packager

Sophos Central Partner ConnectWise Integration. guide

Sophos SafeGuard File Encryption for Mac Quick startup guide. Product version: 7

Sophos Mobile. Network Access Control interface guide. Product Version: 8.1

Sophos Mobile in Central

Ports and Protocols. Clearswift SECURE ICAP Gateway v4.3. Version 01 14/03/2016. Clearswift Public

Ports and Protocols. Clearswift SECURE ICAP Gateway v4.8. Version 2.0. July Clearswift Public

Ports and Protocols. Clearswift SECURE Web Gateway v4.x. Issue /04/2017. Clearswift Public

Sophos for Virtual Environments Startup guide -- Enterprise Console edition. Product version: 1.1

Ports and Protocols. Clearswift SECURE ICAP Gateway v4.9. Version 2.3. November Clearswift Public

Sophos for Virtual Environments. startup guide -- Enterprise Console edition

Sophos Mobile. user help. product version: 8.6

Clearswift SECURE Exchange Gateway V4.8

Sophos Endpoint Security and Control standalone startup guide

Ports and Protocols. Clearswift SECURE Web Gateway v4.x. Version 2.2. October Clearswift Public

Sophos Mobile in Central

Sophos Mobile. startup guide. Product Version: 8.1

Clearswift SECURE Web Gateway V4.x

Document Date: January Version: AHM Page 1 of 20

1 Page Compass Investors, LLC P.O. Box 94 Kenilworth, IL

Sophos Anti-Virus standalone startup guide. For Windows and Mac OS X

Synchronized Security

Sophos XG Firewall Virtual Appliance. Document Date: January Version: AHM Page 1 of 17

Seqrite TERMINATOR (UTM) Unified Threat Management Solution.

Clearswift SECURE Exchange Gateway V4.9

Sophos Mobile Security

Installation Guide. McAfee Web Gateway. for Riverbed Services Platform

SOLUTION MANAGEMENT GROUP

Sophos Central Self Service Portal help

Sophos Web Appliance Configuration Guide. Product Version Sophos Limited 2017

Clearswift SECURE Gateway V4.x

SafeGuard Easy Demo guide. Product version: 6 Document date: February 2012

Citrix SD-WAN for Optimal Office 365 Connectivity and Performance

SafeGuard Easy Demo guide. Product version: 6.1

Sophos Mobile. startup guide. Product Version: 8.5

Sophos Migration Assistant. migration guide

Cisco Security Enterprise License Agreement

Cloud Access Manager SonicWALL Integration Overview

Sophos Web Appliance Configuration Guide. Product Version Sophos Limited 2017

SafeGuard LAN Crypt: Loading Profile Troubleshooting Guide

How-to Guide: Tenable.io for Microsoft Azure. Last Updated: November 16, 2018

Symantec Endpoint Protection Integration Component User's Guide. Version 7.0

Sophos Central Device Encryption. Administrator Guide

Sophos XG Firewall Virtual Appliance - KVM. Document Date: January Version: AHM Page 1 of 19

Symantec Protection Suite Add-On for Hosted Security

Clearswift SECURE Gateway V4.9

Getting Started Guide

Product Guide. McAfee Web Gateway Cloud Service

Course A: Administering System Center Configuration Manager

Integrating Microsoft Forefront Threat Management Gateway (TMG)

Getting Started Guide

How-to Guide: Tenable Core Web Application Scanner for Microsoft Azure. Last Updated: May 16, 2018

ForeScout CounterACT. Plugin. Configuration Guide. Version 1.2

Sophos Mobile Control startup guide. Product version: 7

NetDefend Firewall UTM Services

Administering System Center Configuration Manager

ADMINISTERING SYSTEM CENTER CONFIGURATION MANAGER

ForeScout CounterACT. Controller Plugin. Configuration Guide. Version 1.0

Administering System Center Configuration Manager

ESET REMOTE ADMINISTRATOR PLUG-IN FOR KASEYA. Technical Setup and User Guide

Security Gap Analysis: Aggregrated Results

Administering System Center Configuration Manager

Future-ready security for small and mid-size enterprises

UTM Firewall Registration & Activation Manual DFL-260/ 860. Ver 1.00 Network Security Solution

GUIDE. MetaDefender Kiosk Deployment Guide

Clearswift SECURE Gateway V4.x

TELSTRA CLOUD SERVICES CLOUD INFRASTRUCTURE VIRTUAL SERVER (DEDICATED) GEN2 PRICING GUIDE AUSTRALIA

DIGIPASS Authentication for Check Point VPN-1

Seqrite Cloud. Integrated cloud console for Endpoint Security and UTM. Seqrite Managed Security Service Portal (MSSP)

Integrate Bluecoat Content Analysis. EventTracker v9.x and above

Workspace ONE UEM Certificate Authentication for Cisco IPSec VPN. VMware Workspace ONE UEM 1810

Sophos Appliance Configuration Guide. Product Version 4.3 Sophos Limited 2017

Product Guide. McAfee Web Gateway Cloud Service

Sophos Mobile. app groups interface guide. Product Version: 8.5

How-to Guide: Tenable Nessus for Microsoft Azure. Last Updated: April 03, 2018

Product overview. McAfee Web Protection Hybrid Integration Guide. Overview

A: Administering System Center Configuration Manager

This document provides instructions for the following products.

"Charting the Course... MOC A: Administering System Center Configuration Manager. Course Summary

Integrate Sophos Enterprise Console. EventTracker v8.x and above

MOVE AntiVirus page-level reference

KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT. Kaspersky Open Space Security

Technical Overview of DirectAccess in Windows 7 and Windows Server 2008 R2. Microsoft Windows Family of Operating Systems

WatchGuard XTMv Setup Guide

SEG vs Office 365 Security Features. Feature outline

Sophos Mobile Control installation prerequisites form. Product version: 7

Transcription:

Endpoint web control overview guide Sophos Web Appliance Sophos UTM (version 9.2 or later) Sophos Enterprise Console Sophos Endpoint Security and Control

Contents 1 Endpoint web control...3 2 Enterprise Console only...4 3 Enterprise Console and Web Appliance...5 3.1 Enterprise Console and Web Appliance without LiveConnect...5 3.2 Enterprise Console and Web Appliance with LiveConnect...6 4 Enterprise Console and UTM...7 5 Benefits of endpoint web control...8 6 Legal notices...9 2

overview guide 1 Endpoint web control Sophos Web or UTM appliances can perform filtering for URLs and file types at the network gateway. Sophos Enterprise Console allows you to extend some of this same capability to endpoints via Sophos Endpoint Security and Control, filtering 14 essential site categories on user machines. By combining a Sophos appliance with Sophos Enterprise Console, however, your organization can take advantage of features that both products have to offer. Once you have configured them to work together, you can apply a Full Web Control policy (with more than 50 site categories) to each user machine by way of Endpoint Security and Control. Endpoints then receive policy updates and send web activity reports to the appliance, and send web events to Enterprise Console. Enterprise Console can enable endpoint web control using three different methods: Enterprise Console only Enterprise Console and Web Appliance Enterprise Console and UTM 3

Endpoint web control 2 Enterprise Console only Even without a Web Appliance or Management Appliance, Enterprise Console offers basic web filtering. When a web control policy is configured and enabled solely through Enterprise Console, rules for 14 essential site categories are applied for each user through Sophos Endpoint Security and Control. The policy, defined on Enterprise Console as Inappropriate Website Control, is published to users. Users web activity data is sent back to Enterprise Console, where the results are displayed as web events. The live URL-filtering feature dynamically checks URLs through SXL queries to SophosLabs, obtaining the latest threat information. SXL is the infrastructure that Sophos uses to submit real-time, DNS-based queries to SophosLabs regarding IP addresses. 4

overview guide 3 Enterprise Console and Web Appliance When a Full Web Control policy is applied using either a Sophos Web Appliance or Sophos Management Appliance, Enterprise Console supplies the hostname of the corresponding appliance so that endpoints can communicate with it, either directly or through Sophos LiveConnect. Sophos LiveConnect is a central cloud-based service that allows you to always manage all of your endpoints, whether they are on your local network, at remote sites, or with traveling users. 3.1 Enterprise Console and Web Appliance without LiveConnect When a Full Web Control policy is applied using either a Sophos Web Appliance or Sophos Management Appliance without Sophos LiveConnect enabled, the users endpoint software connects to that appliance and obtains a complete web-filtering policy. Users web activity data is sent back to the designated appliance, while web event data (websites scanned and assessed by the live URL-filtering feature) is sent to Enterprise Console. 5

Endpoint web control 3.2 Enterprise Console and Web Appliance with LiveConnect Optionally, you can deploy Full Web Control with Sophos LiveConnect enabled on the Web Appliance. With LiveConnect, users have access to a cloud service that allows roaming endpoints to communicate with the appliance without you having to allow special access through your organization's firewall. 6

overview guide 4 Enterprise Console and UTM UTM uses Sophos LiveConnect a central cloud-based service for protecting and monitoring endpoint computers. Policy updates are distributed to users, and reporting data from endpoint computers is uploaded, even when users are not connected from within the network. When a Full Web Control policy is applied using a Sophos UTM appliance, Enterprise Console supplies the hostname of the Sophos LiveConnect broker used by UTM so that endpoints can communicate with it. The users endpoint software connects to that host and obtains a complete web-filtering policy. Users web activity data is sent back to the appliance via LiveConnect, while web event data (websites scanned and assessed by the live URL-filtering feature) is sent to Enterprise Console. 7

Endpoint web control 5 Benefits of endpoint web control While the Sophos Web or UTM appliance provides security and productivity protection for systems browsing the web from within your corporate network, endpoint web control extends this protection to users machines. This provides protection, control, and reporting for endpoint machines that are located, or roam, outside your corporate network. Enterprise Console can deliver web control policies to your endpoint machines that provide malware protection and productivity rules based on common site categorizations. With the combination of Sophos Enterprise Console and a Sophos Web or UTM appliance it is possible to extend your full web policy to endpoint machines, providing more than 50 site categories, highly flexible policy configuration, and detailed reporting on threats and usage. With Sophos LiveConnect, roaming machines will still receive full web policy updates, and will provide web usage logs back to the appliance, from wherever it connects, without having to use a VPN or configure special network settings. 8

overview guide 6 Legal notices Copyright 2011 2017 Sophos Limited. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner. Sophos, Sophos Anti-Virus and SafeGuard are registered trademarks of Sophos Limited, Sophos Group and Utimaco Safeware AG, as applicable. All other product and company names mentioned are trademarks or registered trademarks of their respective owners. 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback