If you are using the distributed solution and multitenancy mode, use the web interface of the PCN or SCN server for which you want to configure parameters.
When a standalone proxy server is used, Kaspersky Anti Targeted Attack Platform does not provide encryption of ICAP traffic or authentication of ICAP clients by default. The program administrator must independently ensure a secure network connection between your proxy server and Kaspersky Anti Targeted Attack Platform by using traffic tunneling or iptables.
To enable integration with a proxy server over ICAP:
The Server list table will be displayed.
This opens the Sensor component settings page.
The Host field displays the URL of the Response Modification (RESPMOD) service that processes inbound traffic.
Use this URL to configure integration with Kaspersky Anti Targeted Attack Platform via ICAP on a proxy server that is used in your organization.
Integration with a proxy server over the ICAP protocol will be enabled.
If you have deployed the Central Node and Sensor components as a cluster, you can configure fault-tolerant integration with a proxy server.
To configure the fault-tolerant integration with the proxy server:
Integration with the proxy server will be configured based on the domain name. The proxy server will communicate with a random server in the cluster. If this server fails, the proxy server will communicate with another healthy server in the cluster.
Page top