Configuring the Email DLP Policy

Documentation | Support

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Configuring the Email DLP Policy

Configuring the Email DLP Policy

Administrator Help | Forcepoint DLP | Version 8.4.x

Related topics:

Configuring outbound and inbound email DLP attributes

Defining email DLP policy owners

Identifying email DLP trusted domains

Forcepoint DLP helps administrators control how sensitive data moves through their organization via email. Depending on the deployment, Forcepoint DLP can protect outbound, inbound, or internal email from data loss, or all three.

Monitoring email for sensitive data requires either Forcepoint Email Security or the Forcepoint DLP protector.

Note that the email DLP policy applies to network channels only. To monitor email on endpoint machines, such as laptops that are off-network, create a custom policy.


	Tip To get the full benefit of Forcepoint DLP email capabilities, subscribe to Forcepoint Email Security. The protector can monitor inbound and outbound email in monitoring mode.

Forcepoint Email Security is automatically configured to work with Forcepoint DLP. Forcepoint Email Security registers with the management server during installation, and Forcepoint DLP policies are enabled by default in the Forcepoint Security Manager.


	Important Click Deploy in the Forcepoint Security Manager to complete the registration process.

To confirm that the registration was successful:

1.

Log on to the Forcepoint Security Manager and select the Email Security module.

2.

Navigate to the Settings > General > Data Security page.

3.

If the status is "unregistered," enter the IP address of the management server in the field provided, and click Register.

4.

Switch to the Data Security module of the Security Manager.

5.

Go to the Main > Policy Management > DLP Policies > Email DLP Policy page. A quick-start email data loss prevention (DLP) policy is provided.

6.

On the Outbound tab, select and enable the attributes to monitor in outgoing email messages—for example, attachment type—and configure properties for those attributes. See Configuring outbound and inbound email DLP attributes.

7.

On the Inbound tab, select and enable the attributes to monitor inbound email messages—for example, questionable images—and configure properties for those attributes.


	Note To monitor internal email messages, create a custom policy. On the Destination tab of the policy wizard, select Network or Endpoint Email, then select Direction > Internal.

8.

Identify an owner or owners for the policy. See Defining email DLP policy owners.

9.

Identify trusted domains, if any. See Identifying email DLP trusted domains.

10.


	Note You cannot delete or rename your email policy, but you can enable or disable attributes. In this section, you define inbound and outbound email attributes. You define Internal DLP email through the custom policy wizard.

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Configuring the Email DLP Policy

Copyright 2017 Forcepoint. All rights reserved.