The McAfee Web Gateway cloud-security platform can integrate with the Cequence Unified API Protection (UAP) platform using the Cequence Bridge.
Prerequisites
Before you begin integrating Cequence with the McAfee Web Gateway, verify that your environment meets the following prerequisites.
- An active, licensed installation of McAfee Web Gateway.
- Cequence Bridge is installed and active.
Configuring the McAfee Web Gateway to use Cequence Bridge
This procedure enables the McAfee Web Gateway to use Cequence Bridge in order to pass data to the Cequence UAP platform for analysis.
- In your browser, navigate to the McAfee Web Gateway web UI.
By default, the web UI is accessible at the URLs http://<IP address>:4711 or https://<IP address>:4712. By default, the login credentials are username: admin and password: webgateway. - From the top ribbon, click Policy.
- From the Rule Sets tab, select Add > Rule Set from Library.
The rule set library appears. - From the rule set library, select ICAP Client > ICAP Client, then click OK.
A new ICAP client appears in the list of rule sets. - From the rule set list, select the new ICAP Client.
The configuration options for the ICAP Client appear. - Next to the ReqMod server label, click Edit.
A dialog box with options for the request mode server appears. - In the List content: pane of the dialog box, double-click the first entry.
[TKK directions specific to ICAP continue and are omitted for this draft]
Enabling SSL scanning
SSL scanning [TKK: does something]. This procedure enables the McAfee Web Gateway to perform SSL scanning.
- In your browser, navigate to the McAfee Web Gateway web UI.
By default, the web UI is accessible at the URLs http://<IP address>:4711 or https://<IP address>:4712. By default, the login credentials are username: admin and password: webgateway. - From the top ribbon, click Policy.
- From Rule Sets, click SSL Scanner.
- Check Enable option, then click Save Changes.
The McAfee Web Gateway decrypts HTTPS traffic and sends the decrypted traffic to the Cequence Bridge.
Troubleshooting
Using the Mcafee Web Console requires a Java-enabled browser configured to trust the Web Console URL.
After enabling SSL scanning, spurious notifications or non-loading web pages can occur. To address this, download the SSL certificate used by the McAfee Web Gateway and install the certificate to your browser.
To download the certificate, open Policy > Settings > SSL Client Context with CA > Default CA and click Export. Import the certificate to your browser's trusted root certificates.