ForeScout CounterACT Quick Installation Manual

The Forescout platform provides infrastructure and device visibility, policy management, orchestration and workflow streamlining to enhance network security. The platform provides enterprises with real-time contextual information of devices and users on the network. Policies are defined using this contextual information that helps ensure compliance, remediation, appropriate network access and streamlining of service operations. This guide describes the installation for a single stand-alone CounterACT Appliance preinstalled with version 8.0. Some Appliances may come preinstalled with a later version. To use version 8.1, follow the approved upgrade path, outlined in the version Release Notes.

For more detailed information or information about upgrade or about deploying multiple Appliances for enterprise-wide network protection, refer to the Forescout Installation Guide and Forescout Administration Guide. See Additional Forescout Documentation for information on how to access these guides. Additionally, you can navigate to the support website located at: http://www.forescout.com/support for the latest documentation, knowledge base articles, and updates for your Appliance.

ForeScout CounterACT Package Contents

Your Forescout package includes the following components:

• The CounterACT Appliance
• Front Bezel
• Rail Kits (Mounting brackets)
• Power cord(s)
• DB9 Console connecting cable (for serial connections only)
• Enterprise Products Safety, Environmental, and Regulatory Information
• Getting Started document (CT-xxxx Appliances based on hardware revision 5x and Forescout 51xx Appliances only)

ForeScout CounterACT Overview

Perform the following to set up your Forescout deployment:

1. Create a Deployment Plan
2. Set up your Switch
3. Connect Network Cables and Power On
4. Configure the Appliance
5. Remote Management
6. Verify Connectivity
7. Set Up the Forescout Console

Create a Deployment Plan

Before performing the installation, you should decide where to deploy the Appliance and learn about Appliance interface connections. Decide Where to Deploy the Appliance Selecting the correct network location where the Appliance will be installed is crucial for a successful deployment and optimal performance. The correct location will depend on your desired implementation goals and network access policy. The Appliance should be able to monitor the traffic that is relevant to the desired policy. For example, if your policy depends on monitoring authorization events from endpoints to corporate authentication servers, the Appliance will need to be installed so that it sees endpoint traffic flowing into authentication server(s). For more information about installation and deployment, refer to the Forescout Installation Guide. See Additional Forescout Documentation for information on how to access this guide.

Appliance Interface Connections

The Appliance is generally configured with three connections to the network switch.

Management Interface

The management interface allows you to manage the Forescout platform and perform queries and deep inspection of endpoints. The interface must be connected
to a switch port with access to all network endpoints. Each Appliance requires a single management connection to the network. This connection requires an IP address on the local LAN and port 13000/TCP access from machines that will be running the Console management application. The management port must have access to additional network services.

ForeScout CounterACT Network Access Requirements

Port

Service

To or From Forescout Platform

Function