Use this screen to configure the host name, the IPv4 and IPv6 addresses of the Deep Discovery Analyzer appliance, and other network settings (including the enforcement of TLS 1.2 or above ).
An IPv4 address is required and the default is 192.168.252.2. Modify the IPv4 address immediately after completing all deployment tasks.
Deep Discovery Analyzer uses the specified IP addresses to connect to the Internet when accessing Trend Micro hosted services, including the Smart Protection Network, the ActiveUpdate server, and Threat Connect. The IP addresses also determine the URLs used to access the management console.
You can select Always use TLS 1.2 or above to enhance data security for inbound and outbound connections on Deep Discovery Analyzer.
-
To be compliant with the Payment Card Industry Data Security Standard (PCI-DSS) v3.2, the appliance should use only TLS 1.2 or above for all inbound and outbound connections.
-
Before you can configure this option, verify that the Deep Discovery Analyzer appliance is not in a high availability cluster. Detach passive primary appliances from the cluster at .
-
Ensure that the integrated products and services are using the latest version that supports TLS 1.2 or above. For details, see TLS Support for Integrated Products/Services.
-
Verify that the following products/services are configured to use TLS 1.2 or above.
-
The ActiveUpdate server source at must use HTTPS.
-
The ICAP settings at must use ICAP over SSL.
-
The syslog servers at must use SSL.
-
The SMTP server at must use SSL/TLS or STARTTLS.
-
The Email Submission settings at must use SSL/TLS or STARTTLS.
-
The following table lists configuration limitations.
|
Field |
Limitation |
|---|---|
|
Host name |
Cannot be modified when using high availability |
|
IPv4 address |
|
|
IPv6 address |
|