Hi all, will like to check if anyone have experiences configuring EDL to text file stored on SharePoint? What I have done so far:
Configure EDL service route to use the interface that have access to the SharePoint directory.
Did a ping test with source of said interface to the SharePoint directory - successful.
Tried to configure EDL, without cert profile, to SharePoint link location(HTTPS) of the text file of IP's but was unsuccessful.
From what I understood of EDL, since the SharePoint link is HTTPS, i will need the root and intermediate certificates.
However I have to write in a request for it to another department, since managing SharePoint isn't in my jurisdiction. Hence I am thinking to explore Shared drive option (non-HTTP) but was not successful as well.
Both attempts ended with URL Access error.
I went to check on traffic with the source IP set to the source interface which i configured for the service route for EDL and there were none found even though I initiated "Test Source URL". Can advise if I had omitted anything crucial for configuring the two options aforementioned successfully? Looking forward to any input, cheers.
If the sharepoint is set up using a certificate of an internal CA, you should import the root certificate and add it to the trusted root certificates, but you shouldn't need the assistance from your sharepoint team to get the certificate if you are able to access the URL yourself; you can extract the certificate from your browser and import it onto the firewall
another 'trick' to make sure a service route is used, as I've noticed the service route is not always respected when set to one of the predefined 'applications', is to set a destination and source interface manually
Once you import the root certificate, you can click it from the device>certificate management>certificates and then enable "trusted root certificate" in the pop-up. This will set the firewall to actually trust that root certificate. When you open the url in a regular browser window, does it show you a flat text file, or is there all kinds of SharePoint 'filler' (menu structure etc) around? This could also prevent proper access for the firewall
That's good enough to know. At least I can omit that possibility of drive share. Noted on the Apache too.
Thanks reaper, great help.
EDL only supports http or https links unfortunately, so you will need to rely on the sharepoint or set up your own webserver.... you could stand up an apache that reaches out to a drive share in the background...
Greatly appreciated for the neat info there. Especially on the Service Route. I had not input those values manually. It could explain why I am not even able to see traffic from the source interface I had filtered in logs.
On top of that, will shared drive/folder links work with EDL (i.e. 192.168.x.x/folder/folder/file.txt)? or EDL configuration sticks to either HTTP or HTTPS links only?