Data Loss Prevention

 View Only
  • 1.  Creat group and assign policy

    Posted Feb 01, 2013 07:48 AM

    Hi All,

    How to Creat group and assign policy to that group (for only one Department) and we need to white list few IP Adress and Email's for that group only in symantec DLP 11.5.



  • 2.  RE: Creat group and assign policy

    Posted Feb 01, 2013 12:58 PM

    There is a great step by step information as to how to do this in the admin guide.  It's called DGM or directory group matching.  

    You have to create the connection, then assign it to a policy once the directory has been created.  If you do not have the admin guide please get it and take a look at it and try it out.  



  • 3.  RE: Creat group and assign policy

    Posted Feb 04, 2013 01:18 AM
    I want to create Costumer Support group and we need to move users from default group to Customer Support group and need to exclude few IP Address and Email Id for only on that group. Remaining groups it should work normally and we have Endpoint DLP, Network DLP, and Discover DLP. Kindly provide me the Steps for the same.


  • 4.  RE: Creat group and assign policy

    Posted Feb 04, 2013 01:31 AM
    Hi, check this forum How To Create DLP Policy for Special User Group https://www-secure.symantec.com/connect/articles/create-dlp-policy-special-user-group Hope This Helps!!! Regards, Zafar


  • 5.  RE: Creat group and assign policy



  • 6.  RE: Creat group and assign policy

    Posted Feb 04, 2013 03:47 AM
    After Creating group with AD. How to Exclude Few Domain ID's and IP Address and email for that group Kindly provide me the steps for the same.


  • 7.  RE: Creat group and assign policy

    Posted Feb 06, 2013 04:20 AM

     

    Open the policy in question that is triggering the incidents and blocking confidential information being sent.

     

    1. Set an exception on the Detections tab of the policy for the relevant user's actions*. 
    2. Open the policy in question. 
    3. On the Detection tab click on the Add Exception button
    4. Under Protocol check the option Protocol or Endpoint Monitoring
    5. Then click on the Next button. 
    6. Enter an Exception Name
    7. Under Conditions select the options required by ticking each box required. eg. HTTP, SMTP, Local Drive, Removable Storage, Copy to Network Share, Clipboard,..etc.
    8. Go to the bottom and select the dropped Also Match down box and look for and select Sender/User Matches Pattern
    9. Click on Add button
    10. A new box will appear on screen for Sender Pattern, enter the domain username of the users you want to exclude from the policy. 
    11. Click OK button to finish.