Creating a Data Loss Prevention Policy
- Go to Agents > Agent Management.
- In the agent tree, click the root domain icon () to include all agents or select specific domains or agents.
- Click Settings > DLP Settings.
Click the External Agents tab
to configure a policy for external agents or
the Internal Agents tab to configure a policy for
Configure agent location settings if you have not done so. Agents use these location settings to determine the correct Data Loss Prevention policy to apply. For details, see Endpoint Location.
- Select Enable Data Loss Prevention.
Choose one of the following:
If you are on the External Agents tab, you can apply all Data Loss Prevention settings to internal agents by selecting Apply all settings to internal agents.
If you are on the Internal Agents tab, you can apply all Data Loss Prevention settings to external agents by selecting Apply all settings to external agents.
On the Rules tab, click
A policy can contain a maximum of 40 rules.
Configure the rule settings.
For details creating DLP rules, see Creating Data Loss Prevention Rules.
Click the Exceptions tab and
configure any necessary exception settings.
For details on the available exception settings, see Data Loss Prevention Exceptions.
If you selected domain(s) or agent(s) in the agent
tree, click Save. If you clicked the root domain icon,
choose from the following options:
Apply to All Agents: Applies settings to all existing agents and to any new agent added to an existing/future domain. Future domains are domains not yet created at the time you configured the settings.
Apply to Future Domains Only: Applies settings only to agents added to future domains. This option will not apply settings to new agents added to an existing domain.