Overview

Identity Finder DLP Endpoint for Windows can be managed via the DLP Console.  This management includes the application of policies, scheduling of tasks, reporting of results and logs, remediation, and collection of diagnostic information.  Additionally, the endpoint software can be used interactively by end users and/or executed via the command line at a command prompt

To configure Windows endpoints to communicate with the console, it is necessary to install configuration information on each endpoint that includes the location of the console as well as the encryption information necessary to securely communicate with the console. 

Before a search can be executed on the endpoint, it is necessary for each endpoint to have license information that is provided via a license file (identityfinder.lic) or created via the activation process.

This article describes the process for manually configuring a single system to communicate with the console. To build an installation package for deployment, refer to the following article:

• Creating a Custom Installer for Windows (MSI)

Quick Start Installation

This section describes the process to quickly install and configure DLP Endpoint for Windows on a single system.

If the console is not being used, skip step 2 and instead of step 3 below, just double-click to launch IdentityFinderSetup.exe.

1. Copy IdentityFinderSetupOCR.exe or IdentityFinderSetup.exe to the target machine.
2. Open a web browser, navigate to http://consoleserver/Services where consoleserver is the name or IP address of the enterprise console and click on the appropriate link to save the .reg file to the client. Install the settings by double-clicking on the .reg file and clicking 'OK' to enable communication with the console.
3. Open a command prompt, navigate to the folder with the setup application, and execute the installer with the /endpoint switch and complete the application installation, for example:
   

   IdentityFinderSetupOCR.exe /endpoint

4. When using an identityfinder.lic license file, place that in the folder in which the application was installed (e.g., the location with IdentityFinder.exe).  For more information, refer to:
   
   • Applying an activation number or license key file (identityfinder.lic)
5. Launch Identity Finder DLP Endpoint for Windows.  When not using a license file (as noted in step 4), complete the activation process to enable the application.

The basic installation and configuration of a Windows client is now complete.  The client will register itself with the console and policies and scheduled tasks can be assigned to the client.  The client UI may be used to perform a search and the results will be automatically sent to the console when the application is closed.