- Case Manager Release Notes
- Get Started with Case Manager
- Configure Case Manager Settings
- Investigate a Security Incident
- Manually Create an Incident
- Edit an Incident
- Delete an Incident
- Manually Add an Entity
- Manually Add an Artifact
- Delete an Entity or Artifact
- Add Advanced Analytics Evidence to a Case Manager Incident
- Manage Tasks During an Investigation
- Send Messages from an Incident
- Filter Incidents
- Search for an Incident
- Sort Incidents
- Export Incidents
Configure a Proxy
If your environment has a proxy configured, you must configure a proxy for Case Manager and Incident Responder. Some Case Manager and Incident Responder features use your proxy to function correctly, including services, email ingest and incident email.
In the sidebar, click SETTINGS
, then select Core.Under SERVICE INTEGRATIONS, select Proxy.
To enable the proxy you're configuring, click the Enable Proxy toggle.
Enter information about your proxy connection:
Hostname/server – Enter the name of the host or server for the proxy server.
Protocol – Enter the protocol the proxy server uses: HTTP or SOCKS.
Port – Enter the port number for the proxy server.
(Optional) Username – If the proxy is protected by a password, enter your proxy account username.
(Optional) Password – If the proxy is protected by a password, enter your proxy account password.
(Optional) Whitelist – whitelist hostnames and/or domains, like wildcards (for example, 192.168.*) or IP ranges (for example, 192.168.0.0/24). The Incident Responder docker is already whitelisted by default.
To validate the connection to your proxy, enter a URL, then select TEST CONNECTIVITY. If you see an error, verify the information you entered then retest the connection.
Click SAVE.