: Configure Connectivity to the DLP Cloud Service
Focus
Focus

Configure Connectivity to the DLP Cloud Service

Table of Contents

Configure Connectivity to the DLP Cloud Service

Configure connectivity to the DLP cloud service for your local device.
Where Can I Use This?
What Do I Need?
  • Panorama
  • Strata Cloud Manager
  • Enterprise Data Loss Prevention (E-DLP)
    license
  • (
    Panorama
    ) Device management license
  • (
    Panorama
    ) Support license
  • (
    Panorama
    )
    Panorama
    plugin for
    Enterprise DLP
    1.0.4 or later
  • (
    Strata Cloud Manager
    )
    Prisma Access
    license
  • (
    Strata Cloud Manager
    )
    AIOps for NGFW Premium
    license
  • (
    Strata Cloud Manager
    )
    AIOps for NGFW Free
    license
To configure connectivity to the DLP cloud service, you must create an access token and then configure the
upload_config.properties
file included with the EDM CLI application. The access token you create is how the DLP cloud service authenticates you and understands which DLP user is uploading an EDM data set to the DLP cloud service. If you use a proxy server to connect to the internet, you must enter the proxy server details in the
upload_config.properties
file as well to successfully upload an EDM data set.
  1. Access the Common Services Identity and & Access settings and add a Service Account to generate the
    Client ID
    and
    Client Secret
    .
    If you already have a Service Account created, you can Reset Client Secret to recover a lost
    Client Secret
    .
    The
    Client ID
    and
    Client Secret
    are used to authenticate and connect the EDM CLI application to the DLP cloud service.
    When you create the Service Account, the
    Client ID
    and
    Client Secret
    are displayed in the
    Client Credentials
    . You can manually copy the Client Credentials or
    Download CSV File
    to download the Client Credentials in plaintext locally to your device.
  2. You must download EDM CLI application 2.2 or later version to upload an EDM data set to a TSG-supported tenant.
  3. On the local device where you downloaded the EDM CLI application, navigate to and open the upload configuration file.
    The upload configuration file is bundled with the
    package-edm-secure-cli-<version>-<platform>.zip
    file contents you extracted when you set up the EDM CLI application.
    The name of the upload configuration for Linux and Windows versions of the EDM CLI display as:
    • Linux
      upload_config.properties
    • Windows
      upload_config
  4. Configure the upload configuration file to enable connectivity to the DLP cloud service.
    1. In the
      have_access_token_refresh_token
      , enter
      no
      .
    2. Add the
      client_id
      and
      client_secret
      .
    3. Specify whether the local device uploading the EDM data set to the DLP cloud service requires a proxy server to the connect to the internet.
      If a proxy server isn’t required, enter
      no
      (default).
      If a proxy server is required, enter
      yes
      .
    4. (
      Proxy server only
      ) Enter the
      proxy_host_name
      and
      proxy_port_number
      .
      Skip this step if a proxy server isn’t required for the local device to connect to the internet.
    5. (
      Proxy server only
      ) Enter the
      proxy_user_name
      and
      proxy_password
      .
      Skip this step if a proxy server isn’t required for the local device to connect to the internet.
    6. Enter the
      dataset_name
      for the EDM data set you want to upload. The data set name entered here is used in the DLP app for the uploaded EDM data set.
    7. Save the changes to the upload configuration file.

Recommended For You