Configuring Web Service Settings

  1. Go to Threat Intelligence > Sharing Settings > Web Service.

    The Web Service screen appears.

  2. Select Enable web service to allow integrated products/services to obtain information from Deep Discovery Director.
  3. (Optional) By default, Deep Discovery Director (Consolidated Mode) shares threat intelligence data through HTTPS web service. You can also enable HTTP web service for data sharing. Under Server Settings, select Share information using HTTP (in addition to HTTPS) and specify the HTTP server port number.
  4. Under Criteria, select which objects to include in the threat intelligence data file.
  5. Under Criteria, select the risk level of the objects to be included in the threat intelligence data file.

    The objects appear in the generated file under the following categories.

    Table 1. Object Categories in Generated File

    Object

    Category in Generated File

    Synchronized Suspicious Objects

    DDD_so_blacklists

    User-Defined Suspicious Objects

    DDD_so_blacklists

    C&C Callback Addresses

    DDD_cnc_blacklists

    Malicious URL detected by Web Reputation Service from integrated product

    DDD_wrs_blacklists

  6. Click Save.
  7. (Optional) Click Generate Now.
    Note:

    After the file generation is successful, you can click the URL to download the threat intelligence data file to view the content.

  8. Configure an integrated product/service (for example, Blue Coat ProxySG device) to obtain threat intelligence data from Deep Discovery Director (Consolidated Mode). For more information, see the documentation for the integrated product/service.