Procedure

1. Navigate to Networked Computers → Client Management.
2. In the client tree, click the root domain icon () to include all clients or select specific domains or clients.
3. Click Settings → DLP Settings.
4. Click the External Clients tab to configure a policy for external clients or the Internal Clients tab to configure a policy for internal clients.

   Note Configure client location settings if you have not done so. Clients will use these settings to determine their location and apply the correct Data Loss Prevention policy. For details, see Computer Location.

5. Select Enable Data Loss Prevention.
6. Choose one of the following:
   • If you are on the External Clients tab, you can apply all Data Loss Prevention settings to internal clients by selecting Apply all settings to internal clients.
   • If you are on the Internal Clients tab, you can apply all Data Loss Prevention settings to external clients by selecting Apply all settings to external clients.
7. On the Rules tab, click Add.
   A policy can contain a maximum of 40 rules.
8. Configure the rule settings.
   For details creating DLP rules, see Creating Data Loss Prevention Rules.
9. Click the Exceptions tab and configure any necessary exception settings.
   For details on the available exception settings, see Data Loss Prevention Exceptions.
10. If you selected domain(s) or client(s) in the client tree, click Save and Apply the Settings to Clients. If you clicked the root domain icon, choose from the following options:
    • Apply to All Clients: Applies settings to all existing clients and to any new client added to an existing/future domain. Future domains are domains not yet created at the time you configured the settings.
    • Apply to Future Domains Only: Applies settings only to clients added to future domains. This option will not apply settings to new clients added to an existing domain.