Cisco Cisco Content Security Management Appliance M1070 Mode D'Emploi

In order to obtain File Analysis report details, the appliance must be able to connect to the File Analysis 
server over port 443. See details in 

If your Cisco Content Security Management appliance does not have a direct connection to the internet, 
configure a proxy server for this traffic (See 

.) If you have 

already configured the appliance to use a proxy to obtain upgrades and service updates, the existing 
settings are used. 

If you use an HTTPS proxy, the proxy must not decrypt the traffic; use a pass-through mechanism for 
communications with the File Analysis server. The proxy server must trust the certificate from the Fire 
Analysis server, but need not provide its own certificate to the File Analysis server. 

In order to allow all content security appliances in your organization to display detailed results in the 
cloud about files sent for analysis from any Cisco Email Security appliance or Cisco Web Security 
appliance in your organization, you need to join all appliances to the same appliance group. 

Select Management Appliance > Centralized Services > Security Appliances. 

Scroll to the File Analysis section. 

If your managed appliances are pointed at different File Analysis cloud servers, select the server from 
which to display result details. 

Result details will not be available for files processed by any other cloud server. 

Enter the Analysis Group ID. 

If you enter the Group ID incorrectly or need to change it for any other reason, you must open a case 
with Cisco TAC. 

This change takes effect immediately; it does not require a Commit. 

It is suggested to use your CCOID for this value. 

This value is case-sensitive. 

This value must be identical on all appliances that will share data about files that are uploaded for 
analysis.

An appliance can belong to only one group. 

You can add a machine to a group at any time, but you can add it only once. 

Click Group Now.