Security Configuration: Network Encryption

You can configure RSA NetWitness Platform to send or receive data from external data sources.

Note: RSA recommends that whenever you have the option to choose between unsecured and secured versions of a communication protocol, you choose the secured version.

NetWitness Platform Web Server Communications

The RSA NetWitness Platform UI or web server communicates with the Live Service (CMS) over port 443 using the HTTPS protocol.

Note: During installation, the system is engineered to set the default communication protocol to HTTPS over port 443.

Reporting Engine, ESA and Warehouse Connector : External Communication

RSA recommends that you use the secure TCP protocol and enable an SSL connection while configuring Reporting Engine, ESA, Warehouse Connector, Licensing, and Malware.

For more information on Reporting Engine, see "Configure Output Actions" in the Host and Services Configuration Guide.

For more information on Malware external communication, see " Configure Malware Analysis Operating Environment" in the Host and Services Configuration Guide.

For more information on ESA, see " Notification Methods" in the Alerting Using ESA Guide.

For more information on the Warehouse Connector, see "Configure Warehouse Connector" in the Host and Services Configuration Guide.

For more information on Licensing, see "Configure NetWitness Platform Notifications" in the Licensing Management Guide.

Log Collector Service

To help secure communication between the Log Collector service running on the Log Decoder and the event sources, RSA recommends the following protocols.

Note: For more information on enabling SSL for component communications, see Component Authentication.

Enabling HTTPS on REST Interfaces for Core Services

To enable HTTPS on REST interfaces:

1. Log in to REST interface.
2. Go to the rest > config node.
3. Set SSL config to on.
4. Restart the service.