This article shows you how to set up Apex One as a Service to synchronize suspicious objects with on-premise TippingPoint
- Prepare a server (Windows Server 2012, 2016, or 2019) in the DMZ that can successfully connect to the On-premise TippingPoint server.
Configure this DMZ server’s firewall settings:
DIRECTION ALLOW RULES Inbound TCP, port: 4433. (Source is Apex One as a Service) Outbound The server address and port for the On-Premise TippingPoint server.
- Download Apex One as a Service remote connection tool and extract it.
Install Apex One as a Service remote connection tool on the DMZ host.
Do not start the Smart Relay service at this point.
- Put the extracted package files under "RemoteConnectionTool\RemoteConnectionTool" folder into "C:\Program Files (x86)\Trend Micro\Smart Relay" (create the folder if needed) on the host and execute install.bat as an administrator to set up Smart Relay as a service.
Configure the Apex One as a Service remote connection tool in apricot_config.xml.
Under the <name>TP</name>, configure the address of the TippingPoint server.
- Start the Smart Relay service by running “net start smartrelay” command.
- Log in to Apex Central as a Service console, go to Threat Intel > Distribution Settings > TippingPoint.
- Specify the Server FQDN or IP address and port of the remote connection endpoint as Server name.
- Input the user name and password for TippingPoint.
- Click Save.