-
How to configure F-Secure Policy Manager Server to listen on multiple TCP ports for HTTPS traffic
Issue: In default configuration, Policy Manager Server listens to HTTPS traffic on port 443. However, if there is a requirement for changing this port, clients connected to the Policy Manager may end up in state where they are no longer able to communicate with the server. Resolution: This article describes, how to…
-
How to scan files that are linked by symbolic link in Linux Security 64?
Issue: How to scan files that are linked by symbolic link in Linux Security 64? Resolution: Realtime scan is able to scan symbolic link, as long as the target file's original location is included in RTS scan target. For manual scan (using remote command from PMC) and schedule scan, symbolic link will not be scanned. For…
-
How to migrate the Policy Manager Server to the new Windows Server?
Issue: How to move the WithSecure Policy Manager Server to the new Windows Server? Resolution: Follow these steps to transfer the WithSecure Policy Manager Server to a new server. * Backup the current Policy Manager database from the old server: * Stop the Policy Manager Server service * Policy Manager 15: net stop fsms *…
-
How to install only Policy Manager Console 16.00
Issue: How can I install Policy Manager Console 16.00 as stand-alone, so that it installs only the Console and not also Policy Manager Server? Resolution: You can install Policy Manager Console separately by using msiexec.exe with NOSERVER=true parameter. Example command: msiexec.exe /i…
-
How to check whether ORSP feature(Security Cloud) on Linux Security 64 working or not
Issue: How to check whether ORSP feature(Security Cloud) on Linux Security 64 working or not Resolution: By using the "cloudcar.exe.zip" sample file, you can check if ORSP(Security Cloud) is working properly. You can download the file from here.…
-
How to replace default self-signed Policy Manager Linux certificate with trusted CA created certificate
Issue: How can I replace the default self-signed Policy Manager Linux certificate with trusted CA created certificate? Resolution: The Policy Manager for Linux keystore is located inside "/var/opt/f-secure/fspms/data/fspms.jks" (version 12.30 and higher) or "/opt/f-secure/fspms/config/fspms.jks" for previous Policy Manager…
-
How to replace the default self-signed Policy Manager certificate with a trusted certificate authority (CA) created certificate?
Issue: How can I replace the default self-signed Policy Manager certificate with a trusted certificate authority (CA) created certificate? Resolution: Assume that you have: * The signed or maybe self-signed certificate (with full chain of intermediate CA) and private key for it inside PKCS12 Keystore. * It is protected…
-
How to exclude a domain or specific website from Web Content Control disallowed site categories?
Issue: How to exclude a domain or specific website from Web Content Control disallowed site categories? The site belongs to a blocked category but users need to be able to access it. Resolution: If a website or domain has been assigned a category that the administrator wants to have as disallowed, the Trusted…
-
How to exclude a folder or file from real-time scanning and DeepGuard in Policy Manager?
Issue: Steps to exclude a folder or file from real-time scanning and DeepGuard for Client Security and Server Security in Policy Manager Console Resolution: You can exclude a file or folder from Real-time scanning and DeepGuard by following the steps below: * Log into Policy Manager Console * Click on Settings * Select…
-
How to upgrade WithSecure Client Security or Server Security using the Policy Manager Console?
Issue: How to centrally upgrade WithSecure Client Security or Server Security to a newer or latest version using the Policy Manager Console? Resolution: Both Client Security and Server Security can be centrally upgraded to a newer version from the Policy Manager Console. Follow these steps to upgrade: * Download the latest…