Cloud Environment
Preparation for Cloud Environment
System Operating Environment
- System Operating Environment - Cloud
- Accessing via browser without agent installation
- Check User Access Environment and Authentication Request
- User Authentication and Usage Policy Determination/Application
- Request for Access to Work System According to Usage Policy
- Accessing Work Systems and Blocking Malware Infiltration through an Isolated Browser
- Download the file saved in SHIELDrive, process CDR when uploading to the work system.
- View/Edit Files with Web Editor Without Downloading
Port information required for OpenSea
1. Firewall Information
| Protocol | Port Number | Departure point | Destination | Purpose of Use |
|---|---|---|---|---|
| TCP | 8080 | ALL | SHIELDGate Desktop Service server internal address | Web Service Access Port |
| TCP | 9080 | ALL | SHIELDGate Desktop Service server internal address | Web Configuration Access Port |
| TCP | 9090 | ALL | SHIELDGate Desktop Service server internal address | openfire web connection port |
| TCP | 5222 | ALL | SHIELDGate Desktop Service server internal address | Communication with XMPP Server (Standard and Encryption) |
2. External -> Internal (Windows Inbound Policy), choose based on whether to use https
| Departure point | Destination | Allowed Port | Note |
|---|---|---|---|
| ALL | SHIELDGate Desktop Service external server address | HTTP (TCP:80) | SHIELDGate Desktop Service Server URL Access Port (None-Use SSL) |
| ALL | SHIELDGate Desktop Service server external address | HTTPS (TCP:443) | SHIELDGate Desktop Service Server URL Access Port (Used SSL) |
3. Company PC (Windows Firewall Inbound Rules) SettingsNote) ※ When installing the SHIELDGate Desktop Service configuration program (SHIELDGate Desktop Agent) on an internal PC, the Windows Firewall inbound rules are automatically configured.
| Protocol | Local Port Number | Departure point | Destination | Purpose of Use |
|---|---|---|---|---|
| TCP | 25900 | ALL | ALL | SHIELDGate Desktop Access Protocol (SRT) |
| TCP | 8282 | ALL | ALL | websocket communication |
Firewall URL information needed for OpenSea
Here is the list of URLs that need to be allowed in the firewall when using SHIELDGate.
| No | Product Classification | URL | Usage | User Firewall | Administrator Firewall |
|---|---|---|---|---|---|
| 01 | Common | login.security365.com | Integrated Authentication Service | O | O |
| 02 | Common | log.security365.com | Integrated Log Transmission | O | O |
| 03 | Common | portal.security365.com | Security365 Management Center Page (Front) | X | O |
| 04 | Common | spsvr.security365.com | Security365 Management Center Page (Backend) | X | O |
| 05 | Common | license.security365.com | Security365 License Management | X | O |
| 06 | Common | infolineage.security365.com | SHIELDGate Log Management Page | X | O |
| 07 | SHIELDGate | shieldgate.security365.com | SHIELDGate User/Admin Page | O | O |
| 08 | SHIELDGate | rbi2.security365.com | SHIELDGate Integration | O | O |
| 09 | EDO | edo.security365.com | Integration of SHIELDGate and SHIELDrive | O | O |
| 10 | SHIELDrive | cssb.s365demo.com | Cloud Secure Storage Broker Service | O | O |
| 11 | SHIELDrive | kms.s365demo.com | Key Vault Service Used in CSSB and CDF | O | O |
| 12 | SHIELDrive | dms.s365demo.com | Document Web Viewer (SHIELDrive Support) | O | O |
| 13 | SHIELDrive | shieldrive.security365.com | SHIELDrive User/Admin Page (Front) | O | O |
| 14 | SHIELDrive | webdav.security365.com | SHIELDrive File Upload/Download Service | O | O |
- No.01 ~ 09 : When using SHIELDGate, it must be allowed in the firewall.
- No.10 ~ 14: You only need to allow it when using it in conjunction with SHIELDrive.
SHIELDGate URL Configuration and Usage Settings
To use the integration features (Remote Browser, Desktop Service, SHIELDrive, etc.) in SHIELDGate, you need to configure the URL and usage settings on the SHIELDGate environment settings page.
-
Accessing the Administrator Settings Page
- SHIELDGate (https://shieldgate.security365.comLog in with the master administrator account.
- SHIELDGate Environment Configuration (https://shieldgate.security365.com/admin/setting) connects.
Remote Work URL Settings
원격근무 URLEnter the SHIELD@Home server address (Domain or server IP address) to connect to the item.적용When the button is clicked, the entered server information is saved, and you can connect to the desktop through the entered server address.
Business System URL Configuration
업무 시스템 URLRemote browser server address in the item (DomainEnter ).적용When the button is clicked, the entered server information is saved, and you can access the app through the entered server address.
Desktop URL Settings
데스크톱 URLEnter the Desktop server address (Domain or server IP address) to connect to the item.적��용When the button is clicked, the entered server information is saved, and you can connect to the desktop through the entered server address.
File (SHIELDrive) Menu URL Settings
SHIELDrive URLSHIELDrive operating environment address for the item (https://shieldrive.security365.com) Enter.적용When the button is clicked, the entered server information is saved, and during file upload/download, the registered storage of the SHIELDrive operating environment is used.개인함) is used.
Setting SHIELDrive Usage
- Check whether to use SHIELDrive and activate the SHIELDrive feature.
- User Page of SHIELDGate when not checked
파일Menu and SHIELDGate Admin Page파일 관리The menu will be disabled.
- User Page of SHIELDGate when not checked