Administrator Tasks

To enable the incident review process, Control Manager administrators need to complete some prerequisite tasks. The following table lists the required tasks and references:

Table 1. Administrator Tasks

Task

References

Set up manager information in Active Directory.

Setting Up Manager Information in Active Directory Users

Set up Active Directory integration to obtain user information.

Active Directory and Compliance Settings

Create user accounts specific for DLP incident investigation.

You can assign the following user roles to grant permission to review DLP incidents:

  • Administrator and DLP Compliance Officer

  • DLP Compliance Officer

  • DLP Incident Reviewer

Note:

The DLP Compliance Officer and DLP Incident Reviewer roles are only available to Active Directory users.

Set up the Scheduled incident summary and Incident details updated notifications.

Export DLP logs for auditing purposes.

Working with Log Queries