Gatelet not recording any incidents from WSS Unified Agent (UA)
Last Updated April 23, 2019
Gatelet Policy is not firing with WSS integration using the UA as the access method; Gatelet not seeing any activity.
CloudSOC Gatelet, WSS Unified Agent (UA)
No error on CloudSOC or WSS
When using the UA as the WSS access method, confirm that there are no SSL Exemptions within the WSS console which are exepmting the UA traffic from being SSL intercetped.
SSL interception is required on UA traffic because the UA sends an ICAP request to CloudSOC based on the given Gatelet. If the traffic isn't intercepted, UA will not be able to know which Gatelet request to send, thus resulting in there being no incidents detected in the CloudSOC Gatelet.
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe