Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Configuring Local Smart Protection Server for Apex One as a Service

    • Updated:
    • 17 Feb 2021
    • Product/Version:
    • Apex One as a Service
    • Platform:
Summary

Trend Micro delivers File Reputation Services and Web Reputation Services to Apex One Agents and Smart Protection Sources.

Smart protection sources provide File Reputation Services by hosting the majority of the virus/malware pattern definitions. Security Agents host the remaining definitions. The agent sends scan queries to smart protection sources if its own pattern definitions cannot determine the risk of the file. Smart protection sources determine the risk using identification information.

Smart protection sources provide Web Reputation Services by hosting web reputation data previously available only through Trend Micro hosted servers. The agent sends web reputation queries to smart protection sources to check the reputation of websites that a user is attempting to access. The agent correlates a website’s reputation with the specific web reputation policy enforced on the endpoint to determine whether access to the site will be allowed or blocked.

The smart protection source to which the agent connects depends on the agent location. Agents can connect to either Trend Micro Smart Protection Network or to an Standalone Local Smart Protection Server.

Standalone Local Smart Protection Servers are for users who have access to their local corporate network. They localize smart protection services to the corporate network to optimize efficiency.

Standalone Smart Protection Server installs on a VMware or Hyper-V server. The standalone server has a separate management console and is not managed from the Apex One web console.

Details
Public

To configure Local Smart Protection Server for Apex One SaaS:

  1. Download Smart Protection Server from this link and then deploy it.

    Configure Local SPS

  2. Upgrade Smart Protection Server to the latest version and patch.

    Configure Local SPS

  3. Configure Apex One SaaS to use Local Smart Protection Server:
    1. Access the Apex One SaaS console via Apex Central SaaS.

      Configure Local SPS

    2. Go to Smart Protection Sources configuration.

      Configure Local SPS

    3. Review your current deployment to determine if you would need Endpoint Location configuration.
       
      More information about Endpoint Location configuration can be found in this link.

      There are two tabs, one for External Agents and one for Internal Agents.

      Configure Local SPS

      For Internal Agents:

      1. Click Add.
      2. Add the agents (IP Range) that will use a specific Standalone Smart Protection Server as Smart Protection Source.
      3. Specify if it will be used for File Reputation, Web Reputation or both.

        You may add several Smart Protection Servers if needed.

        Configure Local SPS

         

        Details about FQDN and port used by Smart Protection Server can be found accessing Smart Protection Server web console. Below is the Smart Protection Server web console and where you can find the FQDN and ports for File and Web Reputation.

        Configure Local SPS

    4. Once you have added as many IP Ranges as needed, click Save and notify agents.

      Configure Local SPS

Premium
Internal
Partner
Rating:
Category:
Configure
Solution Id:
000285664
Feedback
Did this article help you?

Thank you for your feedback!


*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.