Since Apex One Patch 4 Build 9113, the maximum upload size of Data Loss Prevention (DLP) forensic data (from CD/DVD, USB, and SMB channel) was expanded to 128MB. However, it cannot be downloaded in Apex Central due to an IIS and PHP limitation.
This article explains how to adjust server settings on Apex One and Apex Central to lift the limitation.
To edit the Apex One server settings:
- Open Command Prompt with administrator privileges on the Apex One server.
- Switch the working directory to {Apex One Server installation folder}\PCCSRV.
- Execute the following commands:
SVRSVCSETUP -SF_ConfigDLPForensic UploadForensicDataSizeLimitInMb 150
SVRSVCSETUP -SF_ConfigDLPForensic RejectDownloadOnFileSizeInMb 150
SVRSVCSETUP -SF_ConfigDLPForensic maxAllowedContentLength 200000000
SVRSVCSETUP -SF_ConfigDLPForensic uploadReadAheadSize 150000000
SVRSVCSETUP -SF_QueryDLPForensic
Optionally, it’s recommended to further config agent behavior to avoid too many connections with a huge DLP forensic data upload occupied server capacity:
- Open {Apex One Server installation folder}\PCCSRV\ofcscan.ini with text editor.
- Add the following keys under [Global Setting] section as following:
EnableConcurrentForensicUploadControl=1
ConcurrentForensicUploadControlMinTriggerSizeInMB=20 - Open {Apex One Server installation folder}\PCCSRV\Private\vdi.ini with text editor.
- Add the following keys under the [TaskController] section:
Controller_04_MaxRunningSeconds=600
Controller_04_MaxConcurrentGuests=10
Controller_04_BaseWaitingTime=10
Controller_04_MaxWaitingTime=300
Controller_04_TaskName=DLPForensicUploadSecure
Controller_04_SingleVirtualHostOnly=1 - Go to the Apex One web console > Agents > Global Settings.
- Click Save to deploy this setting to agents.
Since the Apex One server will send DLP forensic data to the Apex Central server, it’s necessary to changethe IIS and PHP settings on the Apex Central server to accept large files from Apex One:
- Open IIS Manager on the Apex Central server.
- Select the Apex Central web site. By default, it’s "Default Web Site".
- Double-click Request Filtering.
- Click the Rules tab and click Edit Feature Settings on the right panel.
- Change the maximum allowed content length (Bytes) to "1024000000".
- Open {Apex Central installation folder}\PHP\PHP.ini with text editor.
- Find Memory_limit and Post_max_size and change it as follows:
Memory_limit=1024M
Post_max_size=2000M