Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleTo create a rule with a simple condition

The rule we create here will block This rule blocks downloading of a file files with metadata indicating that it contains they contain personal identification information (PII).

  1. Go to the DLP page and click Add DLP.
  2. In the Rule Update dialog box, enter a Rule Name, and choose DOWNLOAD in Affected User Actions.
  3. Click Rule Expression Builder.


    The Rule Expression Builder opens.
  4. Click ADD.

    You are given two choices: New Rule and New Rule Group
  5. Since this is a simple rule, choose New Rule.
    Fields for creating a rule appear.
    Image Removed
  6. The top field shows options based on the Affected User Action you chose. Since the Affected User Action is DOWNLOAD, the options are Request, File, Metadata, and UserThis rule checks if certain metadata exists, so choose
    Image Added
  7. Choose Metadata.
  8. In the next field, choose exists, and in the last field, choose the metadata set and its the parameter that indicates that the file contains PII.
    For this example, the metadata set is cce and the parameter is pii
  9. Click Save, and then click Update.
  10. In the Rule Update dialog box, choose a DLP Action, DLP Mode, and optionally enter a Rule Notification, and click Create.
    The rule appears in the Smart DLP list.


Expand
titleTo create a rule with multiple conditions

The rule we create here will block This rule blocks downloading of a file  either:

  • Sent from a user in the group User
    OR
  • Sent from  a user in the group Manager and sent from the Server address 1.1.1.1.
  1. Go to the DLP page and click Add DLP.
  2. In the Rule Update dialog box, enter a Rule Name, and choose DOWNLOAD in Affected User Actions.
  3. Click Rule Expression Builder.
  4. Click Add.
    You are given two choices: New Rule and New Rule Group
  5. To add the condition that only checks if the user is in the User group, choose New Rule.
  6. Fill the fields with User, in group, usersand Users.
  7. Click Save.
  8. Click ADD again.
  9. Since you are adding a two-condition rule, click New Rule Group.
    Clicking New Rule Group will enclose the conditions that follow in parentheses.
  10. Choose the indented ADD directly under AND.
    Make sure you click the correct ADD link.


  11. Click New Rule.
  12. Fill in the fields with User, in group, and Managers.
  13. Click ADD directly under the fields for this condition, and choose New Rule.
  14. Enter the fields Request, ip equals, and 1.1.1.1.
  15. Click Save for each of the conditions.
  16. The rule expressions expression is saved. 
  17. Since the expression is checking if one condition OR the other condition exists, change the top AND to OR.
  18. Click Update.
  19. Make sure your Rule Expression is correct, then fill in values for DLP Action, DLP Mode, and Rule Notification, and click Create.
    The rule appears in the Smart DLP list.

...