About Cisco IronPort
Cisco IronPort ESA (Email Security Appliance) is known for its comprehensive, fast, and dynamic protection against email security threats. Protection against emerging threats is also made possible with the continuous upgrades and new rules added to the customers’ email security solutions. Domains of suspicious senders can be added to blacklists. Similarly, safelists can also be upgraded with trusted domains.
Together, SIRP and Cisco IronPort ESA deliver advanced email security. SIRP’s integration with Cisco IronPort allows security teams to execute response actions right from SIRP.
Supported Actions
SIRP’s Cisco IronPort integration app allows you to execute the following actions:
S.no | Action | Description |
1 | Add Sender Domain to Blocklist | The sender domain will be added to the blocklist in Cisco IronPort |
2 | Add Sender Domain to Safelist | The sender domain will be added to the safelist in Cisco IronPort |
Enable and Configure Cisco IronPort
Create a new user on the Cisco IronPort Instance
Open your Cisco IronPort instance.
In the Settings tab from the dashboard, go to Users.
Create a New user and assign a name to them.
Also, assign a minimum operator role to this new user.
Enable the Cisco IronPort in SIRP
First, log in to SIRP, then go to Apps from the left navigation bar.
Locate the app named Cisco IronPort.
Enable the Cisco IronPort app by clicking on the toggle button under the Status Column.
Once you enable the App, click the configure option to integrate SIRP with Cisco IronPort.
Add the following details and click Save:
URL: <URL from the Cisco IronPort Instance>
Username: <Account ID from Cisco IronPort Instance>
Password: <Assigned by the User>