Data Loss Prevention

 View Only
Expand all | Collapse all

Exception for multiple users

  • 1.  Exception for multiple users

    Posted Feb 03, 2013 04:04 AM

    Dear All,

    I have a list 30 Users with their Active Directory Usernames only. I have to add exceptions to an existing policy.

    The actions that are to be put into exception are :

    1.Print/Fax

    2.Copy to local drive and network share

    3. Send Email via outlook and other email services

    Can anyone tell me the best practice of how I can do that ? ..



  • 2.  RE: Exception for multiple users

    Posted Feb 03, 2013 04:09 AM
    NOTE : Only information I have is the AD username. So the Emails are based on the AD Username Eg : "ADusername@companyname.com". Now I have to add the above exceptions to an exisiting policy . Please Help ..


  • 3.  RE: Exception for multiple users

    Broadcom Employee
    Posted Feb 03, 2013 04:13 AM
    use the directory group matching, more information available on the Admin guide.


  • 4.  RE: Exception for multiple users

    Posted Feb 03, 2013 04:42 AM
    @pete: Ive tried that but the problem is, its almost impossible to locate these users on Active Directory. If I could locate the group where these users are that could be easy . But im not able to lacate the group to which these ppl belong.


  • 5.  RE: Exception for multiple users

    Broadcom Employee
    Posted Feb 03, 2013 04:51 AM
    may be you can search through AD window a know the group and then add it through exception.


  • 6.  RE: Exception for multiple users

    Posted Feb 03, 2013 06:47 AM
    If there is a possibility that these users are in different group . Then what should be the approach ? ..


  • 7.  RE: Exception for multiple users

    Broadcom Employee
    Posted Feb 03, 2013 11:38 AM
    you can select user even part of different group.


  • 8.  RE: Exception for multiple users

    Posted Feb 04, 2013 01:30 AM
    @ Pete ..For testing purpose, if I want my username to be in the exception . What approach should is advisable ?


  • 9.  RE: Exception for multiple users
    Best Answer

    Posted Feb 06, 2013 04:18 AM

    Hi,

     

    Open the policy in question that is triggering the incidents and blocking confidential information being sent.

     

    1. Set an exception on the Detections tab of the policy for the relevant user's actions*. 
    2. Open the policy in question. 
    3. On the Detection tab click on the Add Exception button
    4. Under Protocol check the option Protocol or Endpoint Monitoring
    5. Then click on the Next button. 
    6. Enter an Exception Name
    7. Under Conditions select the options required by ticking each box required. eg. HTTP, SMTP, Local Drive, Removable Storage, Copy to Network Share, Clipboard,..etc.
    8. Go to the bottom and select the dropped Also Match down box and look for and select Sender/User Matches Pattern
    9. Click on Add button
    10. A new box will appear on screen for Sender Pattern, enter the domain username of the users you want to exclude from the policy. 
    11. Click OK button to finish.



  • 10.  RE: Exception for multiple users

    Posted Feb 06, 2013 04:25 AM
    Hi Kishorilal , That's the solution .. Thanks for your support . Is this the best practice to do it ? .. Or doing it with Group policy is the best practice ? Please confirm ...


  • 11.  RE: Exception for multiple users

    Posted Feb 07, 2013 11:08 PM

    Hi Muzami it deoends on ur req but it is better to keep with group plicy.



  • 12.  RE: Exception for multiple users

    Posted Feb 09, 2013 12:52 AM

    @ KS Sharma..Thanks for your input !