Limitations of using ICAP servers with Forcepoint NGFW for DLP scanning
- Article Number: 000017727
- Products: Next Generation Firewall (NGFW)
- Version: 6.7
- Last Published Date: November 01, 2019
Using ICAP servers for DLP scanning with Forcepoint Next Generation Firewall (Forcepoint NGFW) has the following limitations:
To integrate a DLP solution that uses the ICAP protocol with Forcepoint NGFW, the DLP solution must provide an ICAP server that:
Forcepoint DLP includes an ICAP server. However, this solution does not currently support X-Authenticated-User headers with the “Local” Auth-Scheme. For this reason, it is not possible to match users with the Forcepoint DLP policy when you use Forcepoint DLP with Forcepoint NGFW.