The vSEC Controller works with:
Important
To use the vSEC Controller with R77.20 and R77.30 gateways (R77.30 gateways with Jumbo Hotfix Accumulator below Take 309) install the R80.10 vSEC Controller v1 Enforcer Hotfix. See sk120464.
For a Security Gateway to work with Data Center objects:
For a Security Gateway to work with Data Center objects, enable the IDA Blade and the IDA API, and add 127.0.0.1 to the trusted clients list.
To activate Identity Awareness:
The Identity Awareness Configuration > Methods for Acquiring Identity window opens.
Remove the AD Query selection if it is not necessary.
The Identity Awareness blade is activated by default.
To work with Data Center objects, the Identity Awareness Blade and Terminal Server have to be enabled.
To activate Identity Awareness:
The Identity Awareness Configuration > Methods for Acquiring Identity window opens.
Remove the AD Query selection if it is not necessary.
The Identity Awareness Configuration > Integration with Active Directory window opens.
The Identity Awareness Software Blade is activated by default.
To enable Identity Awareness on R77.30 Security Gateways, there must be communication between vSEC Controller and the Identity Awareness daemon on the gateway. Run pdp api
enable.
On VSX gateways, run this command on every Virtual System.
In the R80.10 Security Management Server, the vSEC Controller is off by default.
To enable the vSEC Controller, run: vsec on
vSEC turned on successfully
shows in the window.
To enable the vSEC Controller on the Security Management Server High Availability and the Multi-Domain Server High Availability, run: vsec on
on each server
To disable the vSEC Controller, run: vsec off.
When you disable the vSEC Controller, the vSEC Controller functionality will not work.