CTERA integration with the Varonis Data Security Platform is enabled from CTERA Portal version 8.2.1500.64.
CTERA Portal requires the following port open on all portal servers for monitoring with the Varonis Data Security Platform:
| Port | Protocol | Direction |
|---|---|---|
| 5671 | TCP | Outbound |
Access to the Varonis Data Security Platform must be via IPv4.
The Varonis version must be 8.6.32.x or higher and the portal server must have a minimum of 16GB RAM.
The Varonis collector hostname and IP address must be added to /etc/hosts in all portal servers and the messaging service restarted.
To integrate CTERA with Varonis you must first set up the CTERA Messaging Service, described in Setting Up the CTERA Messaging Service and have both Varonis and the portal connected to the same Active Directory domain.
You must not start setting up the Varonis integration until the messaging service setup has completed.
Only one CTERA Edge Filer is defined in the Varonis user interface:
- CTERA recommends that this edge filer is dedicated for the Varonis integration. The edge filer must be able to "see" all the shares in every other edge filer that you want to monitor.
- The CTERA Edge Filer administrator must be an administrator in Active Directory and not the local administrator defined when the edge filer was initially configured. This administrator must belong to the Administrators user group, which is a default edge filer user group.
- On each edge filer that you want to monitor, the audit logs of the SMB file access operations performed on the edge filer must be configured as described in the CTERA Edge Filer Administration Guide, for example, for edge filer version 7.9.x, see Auditing SMB File Access.