ATA Center Web Proxy access to the Internet

%3CLINGO-SUB%20id%3D%22lingo-sub-1098806%22%20slang%3D%22en-US%22%3EATA%20Center%20Web%20Proxy%20access%20to%20the%20Internet%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1098806%22%20slang%3D%22en-US%22%3E%3CP%3EIn%20the%20Microsoft%20documentation%2C%20when%20enabling%20VPN%20integration%20it%20says%3A%3C%2FP%3E%3CP%3E%22%3CEM%3EAfter%20the%20ATA%20Gateway%20receives%20the%20VPN%20events%20and%20sends%20them%20to%20the%20ATA%20Center%20for%20processing%2C%20the%20ATA%20Center%20needs%20access%20to%26nbsp%3Bti.ata.azure.com%3C%2FEM%3E%3CSPAN%3E%3CEM%3E%26nbsp%3Busing%20HTTPS%20(port%20443)%20to%20be%20able%20to%20resolve%20the%20external%20IP%20addresses%20in%20the%20VPN%20events%20to%20their%20geographic%20location.%3C%2FEM%3E%22%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EWe%20use%20web%20proxies%20to%20gain%20access%20to%20the%20Internet%2C%20so%20with%20regards%20to%20the%20above%20how%20do%20we%20configure%20the%20ATA%20Center%20to%20use%20a%20web%20proxy%2C%20or%20is%20it%20a%20case%20that%20the%20user%20who%20is%20accessing%20the%20ATA%20Center%20requires%20access%20to%20the%20Internet%20via%20their%20web%20browser%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EThanks%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EStuart%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1098806%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAdvanced%20Threat%20Analytics%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Occasional Contributor

In the Microsoft documentation, when enabling VPN integration it says:

"After the ATA Gateway receives the VPN events and sends them to the ATA Center for processing, the ATA Center needs access to ti.ata.azure.com using HTTPS (port 443) to be able to resolve the external IP addresses in the VPN events to their geographic location."

We use web proxies to gain access to the Internet, so with regards to the above how do we configure the ATA Center to use a web proxy, or is it a case that the user who is accessing the ATA Center requires access to the Internet via their web browser?

Thanks

Stuart

1 Reply
Highlighted

@stuart townsend 

The docs talks about the account that runs the Center service, not the user who uses the console.

 

Any method that will set it up for local service account on the center machine should work.

You can see a sample on how to do it using the registry in the AATP docs, it should work the same

https://docs.microsoft.com/en-us/azure-advanced-threat-protection/configure-proxy#proxy-authenticati...

 

(note: ATA does not support those deployment parameters, I am only referring to the registry method mentioned there.)

 

Eli