Reference: Set up the zone proxy service

In Threat Response, the options for the Zone Proxy setup is contained in Tanium Direct Connect. To use Direct Connect to manage zone proxy connections, you must install and enable Direct Connect.

In earlier versions of Threat Response there was a requirement to make a configuration from Threat Response and import on the zone server. In the current version, the configurations for zone proxy are all contained in Direct Connect. When Direct Connect is configured and running there are no required actions for Threat Response. When the Direct Connect service is enabled when making a live connection the Threat Response service issues the Deploy Direct Connect - Open Session action.

To install Direct Connect and configure the Direct Connect Zone Proxy:

  1. Install Direct Connect. See Tanium Direct Connect User Guide: Installing for more information.

  2. Install and configure the Direct Connect Zone Proxy. See Tanium Direct Connect User Guide: Configure Zone Proxies for more information.

In an upgrade scenario, to get the zone proxy to run on the same ports are you have been using you need to stop and remove the current zone proxy infrastructure prior to installing the Direct Connect proxy and ensure that the ports are available for the new service. From Threat Response, click Settings and click the current zone server configuration. To move from this configuration to the Direct Connect configuration, use the same port in the Direct Connect configuration.