- Configuring a new Cylance Endpoint Security tenant
- Cylance Endpoint Security requirements
- Requirements: Cylance console
- Requirements: CylancePROTECT Desktop
- Requirements: CylanceOPTICS
- Requirements: CylancePROTECT Mobile app
- Requirements: BlackBerry Connectivity Node
- Requirements: CylanceGATEWAY Connector
- Requirements: CylanceGATEWAY agents
- Requirements: CylanceAVERT
- Cylance Endpoint Security network requirements
- Cylance Endpoint Security proxy requirements
- Accessing the management console and configuring authentication
- Setting up administrators
- Setting up zones to manage CylancePROTECT Desktop and CylanceOPTICS
- Setting up CylancePROTECT Desktop
- Testing your CylancePROTECT Desktop deployment
- Create and manage a device policy
- Installing the CylancePROTECT Desktop agent for Windows
- Installing the CylancePROTECT Desktop agent for macOS
- Installing the CylancePROTECT Desktop agent for Linux
- Require users to provide a password to remove the CylancePROTECT Desktop and CylanceOPTICS agents
- Setting up CylanceOPTICS
- Managing updates for the CylancePROTECT Desktop and CylanceOPTICS agents
- Best practices for deploying CylancePROTECT Desktop on Windows virtual machines
- Using RMM solutions to install the Cylance agents on devices
- Installing the BlackBerry Connectivity Node
- Linking to your company directory
- Adding users and devices
- Setting up CylancePROTECT Mobile
- Setting up CylanceGATEWAY
- Defining your private network
- Setting up the CylanceGATEWAY Connector
- Install the CylanceGATEWAY Connector to a vSphere environment
- Install the CylanceGATEWAY Connector to an ESXi environment
- Prerequisites to install CylanceGATEWAY Connector to a Microsoft Entra ID environment
- Install the CylanceGATEWAY Connector to a Microsoft Entra ID environment
- Install the CylanceGATEWAY Connector to a Hyper-V environment
- Install the CylanceGATEWAY Connector to an AWS environment
- Configure the CylanceGATEWAY Connector in the VM environment
- Access the CylanceGATEWAY Connector using OpenSSH
- Configure your firewall for the CylanceGATEWAY Connector
- Enroll the CylanceGATEWAY Connector with the BlackBerry Infrastructure
- View details for an enrolled CylanceGATEWAY Connector
- Configure the CylanceGATEWAY Connector
- Managing CylanceGATEWAY Connectors
- Manage CylanceGATEWAY Connectors
- Update a CylanceGATEWAY Connector
- UDP connectivity test responses
- Specify your private network
- Specify your private DNS
- Specify your DNS suffixes
- Specify private CylanceGATEWAY agent IP ranges
- Bring your own IP addresses (BYOIP)
- Setting up the CylanceGATEWAY Connector
- Network Address Translation with CylanceGATEWAY
- Define network services
- Controlling network access
- Configuring network protection
- Searching ACL rules and Network Services
- Using source IP pinning
- Configuring the Gateway service options
- Gateway Service policy parameters
- Configure Gateway service options
- Specifying how devices activated with an EMM solution use the CylanceGATEWAY tunnel
- Specify which apps use CylanceGATEWAY on iOS devices
- Specify which apps use CylanceGATEWAY on iOS devices in a Microsoft Intune environment
- Specify CylanceGATEWAY options on Android Enterprise devices
- Specify CylanceGATEWAY options on Chromebook devices
- Specify CylanceGATEWAY options on Android Enterprise devices in your Microsoft Intune environment
- Connecting Cylance Endpoint Security to MDM solutions to verify whether devices are managed
- Installing the CylanceGATEWAY agent
- Defining your private network
- Enrolling CylancePROTECT Mobile and CylanceGATEWAY users
- Setting up CylanceAVERT
- Connecting Cylance Endpoint Security to external services
Specify your private network
- Ensure that you have a list of the IP addresses or IP address ranges for all destinations that you want to define as part of your private network. You can get this information from your network administrator.
- You cannot setup private network access if you do not install aCylanceGATEWAY Connector. Ensure that you installed one or moreCylanceGATEWAY Connectors in a part of every network that has full access to addresses that you specify here. For instructions on installing aCylanceGATEWAY Connector, see Setting up the CylanceGATEWAY Connector.
- You can create a maximum of eight connector groups. You can add a maximum of eightCylanceGATEWAY Connectors instances to each connector group.
- On the menu bar, clickSettings > Network.
- Click thePrivate Networktab.
- ClickConnector Groups.
- ClickAdd Connector group.
- Type a name and description. The connector name can be between 3 and 250 characters. The description can be between 3 and 500 characters.
- On theNetwork Routingtab, clickAdd Address.
- Type one or more IP addresses, IP ranges, or CIDRs and clickAdd.If your environment requires all network traffic to be redirected to your on-premises infrastructure, type0.0.0.0/0.BlackBerryrecommends that you redirect only traffic that is destined to resources on your private network and then configure your environment to useCylanceGATEWAYcloud services for traffic to Internet destinations.When you specify 0.0.0.0/0 for your network routing, all non-DNS traffic (for example, HTTP traffic) routes through theCylanceGATEWAY Connector. Traffic to resources that are not part of your private network require the DNS query to be sent to public DNS servers, and not your private DNS server, before the connection is established and traffic is routed through theCylanceGATEWAY Connector.
- To add an optional description for the IP addresses, IP ranges, and CIDRs defined in step 7, complete the following steps for each entry in the connector group:
- Click
next to an address. - Type a description for each private network (for example, North network).
- ClickSave.
- To remove an address, click
next to the address. - To change the order of the connector group list, click theOrderbutton, and then drag
for the connector group to the appropriate location in the list. - To delete a connector group, remove or reassign all of the assignedCylanceGATEWAY Connectors from the connector group. Click
.