Network Implementation GuideConfiguring the NBA › Set Up the NBA

Previous Topic: Set Up Socket API Mailer to Send Notifications When Emails Are Blocked

Next Topic: Establish a Connection to the NBA

Set Up the NBA

Before you can use the NBA, you must integrate the NBA with your corporate network.

  1. Connect to the NBA

    Establish a connection to the NBA. To do this, you need to:

    1. (Bivio 2000 appliances only) Connect the NBA management port to a router.
    2. Assign an IP address to the management port. This enables you to access the NBA console.
    3. Reset the NBA logon credentials for the NBA console user. The default password for this account is not secure.
  2. Complete the NBA setup

    Use the NBA console to complete the remaining setup tasks. In particular, you need to:

    1. Choose the NBA output type. The NBA can output captured emails and files to policy engines via a socket connection, or save them to local folders, or both.
    2. Specify whether the NBA runs in active or passive mode.
    3. (Bivio 2000 appliances only) Assign IP address to port s0.e2. This is mandatory if you want to run the NBA in active mode; the NBA uses this port to connect to CA DLP policy engines.
    4. Set the time zone, date and time on the NBA. This ensures that any captured files are correctly time-stamped.
  3. Edit the NBA policy

    Set your NBA policy. This is a set of rules (or filters) that determine how the NBA handles data packets passing through the NBA. The NBA policy also identifies which policy engines or PE hubs to use in active mode, and the level of NBA logging operations.

    The easiest way to edit policy is by using the NBA console:

    Alternatively, you can edit nbapolicy.xml in the \config folder on the NBA.

  4. Configure the Event Import parameters

    If you run the NBA in ‘output to disk’ mode, you need to set up Event Import to import captured files and emails from the NBA.

  5. Edit the CA DLP policies

    If you run the NBA in active mode, or are importing from a passive mode architecture, you need to edit your user policies and the machine policy for policy engines. You use the CA DLP Administration console to do this.

  6. Turn on the NBA

    Finally, you can turn on the NBA to begin monitoring traffic transmitted across your corporate network to or from the Internet. You use the NBA console to do this.

More information:

Connect to the NBA Management Port through a Router

Assign an IP Address to the NBA Management Port

Change NBA Account Passwords

Choose the Output Mode

Choose Active or Passive Mode

Assign an IP Address to the NBA Policy Engine Port s0.e2

Set the Time Zone, Date and Time

Multiple Filters Are Applied Successively

Specify the NBA Policy

Importing NBA Events

Turn On the NBA