Integration with Trend Micro Products Parent topic

Deep Discovery Analyzer integrates with the following Trend Micro products.

Sandbox Analysis Parent topic

Products that can send samples to Deep Discovery Analyzer for sandbox analysis:
Note
Note
All samples display on the Deep Discovery Analyzer management console, on the Submissions screen (Virtual AnalyzerSubmissions). Deep Discovery Analyzer administrators and investigators can also manually send samples from this screen.
  • Apex One 2019
  • Deep Discovery Email Inspector 2.5 or later
  • Deep Discovery Inspector 3.7 or later
  • Deep Discovery Web Inspector 2.5
  • ScanMail for Microsoft Exchange 11.0 or later
  • ScanMail for IBM Domino 5.6 SP1 Patch 1 HF4666 or later
  • InterScan Messaging Security Virtual Appliance (IMSVA) 8.2 SP2 or later
  • InterScan Messaging Security Suite (IMSS) for Windows 7.5 or later
  • InterScan Web Security Virtual Appliance (IWSVA) 6.0 or later
  • InterScan Web Security Suite (IWSS) 6.5
  • InterScan Messaging Security Suite (IMSS) for Linux 9.1
  • Deep Security 10.0 or later
  • Deep Edge 2.5 SP2 or later
  • OfficeScan XG or later
  • Trend Micro Endpoint Sensor 1.6 or later
  • Trend Micro TippingPoint Security Management System 5.0 or later
On the management console of the integrating product, go to the appropriate screen (see the product documentation for details on which screen to access) and specify the following information:
  • API key. This is available on the Deep Discovery Analyzer management console, in HelpAbout.
  • Deep Discovery Analyzer IP address. If unsure of the IP address, check the URL used to access the Deep Discovery Analyzer management console. The IP address is part of the URL.
  • Deep Discovery Analyzer IPv4 or IPv6 virtual address. When using Deep Discovery Analyzer in a high availability configuration, the virtual IP address is used to provide integrating products with a fixed IP address for configuration. This is available on the Deep Discovery Analyzer management console, in Administration System Settings High Availability.
  • Deep Discovery Analyzer SSL port 443. This is not configurable.
Important
Important
If the Deep Discovery Analyzer API key changes after registering with the integrated product, remove Deep Discovery Analyzer from the integrated product and add it again.
Note
Note
Some integrating products require additional configuration to integrate with Deep Discovery Analyzer properly. See the product documentation for details.
(Optional) On the Deep Discovery Analyzer management console, review and modify the weight values of integrated products to adjust Virtual Analyzer resource allocation. For details, see Submitters.

Suspicious Objects List Parent topic

Products that retrieve the suspicious objects list from Deep Discovery Analyzer:
  • Apex Central 2019 (with the latest hotfix installed)
  • Deep Discovery Email Inspector 2.5 or later
  • Deep Discovery Inspector 3.7 or later
  • Deep Discovery Web Inspector 2.5
  • Standalone Smart Protection Server with the latest patch 2.6 or later
  • OfficeScan Integrated Smart Protection Server 10.6 SP2 Patch 1 to OfficeScan Integrated Smart Protection Server 11 SP1
  • InterScan Web Security Virtual Appliance (IWSVA) 6.0 or later
  • InterScan Web Security Suite (IWSS) 6.5
  • Control Manager 7.0 Patch 1 (with the latest hotfix installed)
On the management console of the integrating product, go to the appropriate screen (see the product documentation for information on which screen to access) and specify the following information:
  • API key. This is available on the Deep Discovery Analyzer management console, in HelpAbout.
  • Deep Discovery Analyzer IPv4 or IPv6 address. If unsure of the IP address, check the URL used to access the Deep Discovery Analyzer management console. The IP address is part of the URL.
  • Deep Discovery Analyzer IPv4 or IPv6 virtual address. When using Deep Discovery Analyzer in a high availability configuration, the virtual IP address is used to provide integrated products with a fixed IP address for configuration. This is available on the Deep Discovery Analyzer management console, in Administration System Settings High Availability.
  • Deep Discovery Analyzer SSL port 443. This is not configurable.
  • Deep Discovery Analyzer user logon credentials. For details, see Accounts Tab.
Important
Important
If the Deep Discovery Analyzer API key changes after registering with the integrated product, remove Deep Discovery Analyzer from the integrated product and add it again.
Note
Note
Some integrating products require additional configuration to integrate with Deep Discovery Analyzer properly. See the product documentation for details.

Exceptions Parent topic

Products that send exceptions to Deep Discovery Analyzer:
  • Apex Central 2019 (with the latest hotfix installed)
  • Control Manager 7.0 Patch 1 (with the latest hotfix installed)
On the management console of the integrating product, go to the appropriate screen (see the product documentation for information on which screen to access) and specify the following information:
  • Deep Discovery Analyzer IPv4 or IPv6 address. If unsure of the IP address, check the URL used to access the Deep Discovery Analyzer management console. The IP address is part of the URL.
  • Deep Discovery Analyzer IPv4 or IPv6 virtual address. When using Deep Discovery Analyzer in a high availability configuration, the virtual IP address is used to provide integrated products with a fixed IP address for configuration. This is available on the Deep Discovery Analyzer management console, in Administration System Settings High Availability.
  • Deep Discovery Analyzer SSL port 443. This is not configurable.
  • Deep Discovery Analyzer user logon credentials. For details, see Accounts Tab.
Important
Important
If the Deep Discovery Analyzer API key changes after registering with the integrated product, then Deep Discovery Analyzer will need to be deleted from the integrated product and added again.
Note
Note
Some integrating products require additional configuration to integrate with Deep Discovery Analyzer properly. See the product documentation for details.