dlpcreatepol

Configuring Digital Asset Control Policies

You can start to create Digital Asset Control policies after you have configured digital asset definitions and organized them in templates.

In addition to digital asset definitions and templates, you need to configure channels and actions when creating a policy. For details about policies, see Digital Asset Control Policies.

To create a Digital Asset Control policy:

• Networked Computers > Client Management

1. In the client tree, click the root domain icon to include all clients or select specific domains or clients.

2. Click Settings > Digital Asset Control Settings.

3. Click the External Clients tab to configure a policy for external clients or the Internal Clients tab to configure a policy for internal clients.

• Configure client location settings if you have not done so. Clients will use these settings to determine their location and apply the correct Digital Asset Control policy. For details, see Computer Location.

4. Select Enable Digital Asset Control.

5. If you are on the External Clients tab, you can apply all Digital Asset Control settings to internal clients by selecting Apply all settings to internal clients.

If you are on the Internal Clients tab, you can apply all Digital Asset Control settings to external clients by selecting Apply all settings to external clients.

6. Configure the following settings:

• Template Settings

• Channel Settings

• Action Settings

7. If you selected domain(s) or client(s) in the client tree, click Save. If you clicked the root domain icon, choose from the following options:

• Apply to All Clients: Applies settings to all existing clients and to any new client added to an existing/future domain. Future domains are domains not yet created at the time you configured the settings.

• Apply to Future Domains Only: Applies settings only to clients added to future domains. This option will not apply settings to new clients added to an existing domain.

Template Settings

1. Click the Template tab.

2. If you are on the External Clients tab, you can apply template settings to internal clients by selecting Apply settings to internal clients.

If you are on the Internal Clients tab, you can apply template settings to external clients by selecting Apply settings to external clients.

3. Select templates from the Available templates list and then click Add.

When selecting templates:

• Select multiple entries by pressing and holding the CTRL key and then selecting the templates.

• Use the search feature if you have a specific template in mind. You can type the full or partial name of the template.

4. If your preferred template is not found in the Available templates list:

1. Click Add new template. The Digital Asset Templates screen displays. For instructions on adding templates in the Digital Asset Templates screen, see Digital Asset Templates.

2. After creating the template, select it and then click Add.

• OfficeScan uses the first-match rule when checking templates. This means that if a file or data matches the definition on a template, OfficeScan will no longer check the other templates. Priority is based on the order of the templates in the list.

Channel Settings

1. Click the Channel tab.

2. If you are on the External Clients tab, you can apply channel settings to internal clients by selecting Apply settings to internal clients.

If you are on the Internal Clients tab, you can apply channel settings to external clients by selecting Apply settings to external clients.

3. Select the channels for the policy. For details about channels, see Network Channels and System and Application Channels.

4. If you selected any of the network channels:

1. Select the transmission scope.

• All transmissions

• Only transmissions outside the Local Area Network

2. Click Exceptions.

3. Specify monitored and non-monitored targets.

See Transmission Scope and Targets for Network Channels for details on transmission scope, how targets work depending on the transmission scope, and how to define targets correctly.

5. If you selected Email clients:

1. Click Exceptions.

2. Specify monitored and non-monitored internal email domains. For details on monitored and non-monitored email domains, see Email Clients.

6. If you selected Removable storage:

1. Click Exceptions.

2. Add non-monitored removable storage devices, identifying them by their vendors. The device model and serial ID are optional.

3. To add more devices, click the icon.

• Use the Device List Tool to query devices connected to endpoints. The tool provides the device vendor, model, and serial ID for each device. For details, see Device List Tool.

Action Settings

1. Click the Action tab.

2. If you are on the External Clients tab, you can apply action settings to internal clients by selecting Apply settings to internal clients.

If you are on the Internal Clients tab, you can apply action settings to external clients by selecting Apply settings to external clients.

3. Select a primary action and any additional actions. For details about actions, see Digital Asset Control Actions.

4. Configure settings for decompression rules. For details about decompression rules, see Decompression Rules.

See also:

• Digital Asset Control Policies

• Digital Asset Templates

• Digital Asset Control Channels

• Digital Asset Control Actions