Data Loss Prevention

 View Only
  • 1.  DLP 12.5 agent connectivity when disaster recovery

    Posted Aug 11, 2015 01:15 PM

    Hi folks,

     

    I'm prepareing to migrate DLP 12.5 system into virual server.

    So I'm going to follow the steps of manual "Symantec_DLP_12.5_System_Maintenance_Guide.pdf"

     

    I think migration the server and database would be ok but I'm worry about that all the agents also connect to new server as well.

    I know that DLP 12.5 have new SSL key connectivity with agent so it might not cause any problem?

    In the manual, it says only backup and restore tomcat keystore file but not mention about "\SymantecDLP\Protect\keystore\" files.

     

    Just in case, please verify me the right steps.

     

    Thank you.

     



  • 2.  RE: DLP 12.5 agent connectivity when disaster recovery
    Best Answer

    Broadcom Employee
    Posted Aug 11, 2015 03:14 PM

    The endpoint does not use files in the keystore directory starting in 12.5. Those keys are stored in the database such that moving the system does not require you to use those files. The keystore directory does have to do with Enforce to detection server connections. So to move it to a new system you would virtualize the system and have it either take over the same name as the original one or put both into the Enforce console and then move them from the agent overview page in Enforce.



  • 3.  RE: DLP 12.5 agent connectivity when disaster recovery

    Posted Aug 11, 2015 09:18 PM

    Thanks John.

    It's now clear and you have good day. ;)