Identifying the Policy Enforcer Virtual Machine In Security Director

Procedure

1. Log in to Security Director and select Administration > PE Settings.
2. Enter the IP address of the Policy Enforcer virtual machine and the root password and click OK.
3. Select a Threat Prevention Type:
   • Sky ATP with PE—All SDSN features and threat prevention types are available.

     Note: If you upgrade from cloud feeds or Sky ATP, you cannot roll back again. Upgrading resets all devices previously participating in threat prevention. Use the setup wizard to expedite the process configuring threat prevention policies.

   • Sky ATP—All threat prevention types are available: Command and control server, Geo IP, and Infected hosts.

     Note: If you upgrade from cloud feeds only to Sky ATP, you cannot roll back again. Upgrading resets all devices previously participating in threat prevention, and you must re-enroll them with Sky ATP. Use the setup wizard to expedite the process configuring threat prevention policies.

   • Cloud Feeds only—Command and control server and Geo IP are the only threat prevention types available.

   For more information on these threat prevention types, see Policy Enforcer Settings.

   If you change the Policy Enforcer VM password (see Deploying and Configuring the Policy Enforcer Virtual Machine), the Policy Enforcer VM still communicates with Security Director even if you do not update the Policy Enforcer password in the Administration > PE Settings window in Security Director. You can, however, update the information in the PE Settings page with the new password to keep your credentials consistent.

Related Documentation

• Obtaining a Sky ATP License
• Policy Enforcer Overview
• Benefits of Policy Enforcer
• Policy Enforcer Components