Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile DLP Policy
Configuring the Mobile DLP Policy
Administrator Help | Forcepoint DLP | Version 8.4.x
Related topics:
*
Configuring mobile DLP attributes
*
Defining policy owners
Use Forcepoint DLP to define what content can and cannot be sent to mobile devices—such as phones and iPads—from network email systems. This can be used to protect data in case an employee's mobile device is lost or stolen.
The system analyzes content when users synchronize their mobile devices to their organization's Exchange server. If content being pushed to the device breaches the organization's mobile DLP policy, it is handled according to the policy, whether the content is part of an email message, calendar item, or task.
Mobile policies are set for user directory entries (users and groups), business units, or custom users, not individual mobile devices. In other words, you can prevent sensitive data being sent to John Doe's mobile devices, not to a particular device ID.
The mobile DLP policy requires a subscription to Forcepoint DLP Endpoint. In addition, the mobile agent must be installed in the DMZ and connected to both an Exchange server and the Forcepoint management server. (See Configuring the mobile agent for more information.)
Note that the mobile DLP policy applies to mobile email only. To monitor network or endpoint email, configure an email DLP or custom policy, respectively.
Mobile DLP policy configuration overview
Use the Main > Policy Management > DLP Policies > Mobile DLP Policy page in the Data Security module of the Forcepoint Security Manager to configure the mobile DLP policy.
1.
On the Attributes tab, specify the attributes to monitor in email synchronized to mobile devices—for example, attachment type—and configure attribute properties. When these settings are matched, the policy is triggered. See Configuring mobile DLP attributes.
2.
Identify users that don't need to be monitored (trusted users), if any. See Defining mobile DLP trusted users.
3.
Identify an owner or owners for the policy. See Defining policy owners.
4.
Click OK.
 
* 
Note 
You cannot delete or rename your mobile policy, but you can enable or disable attributes.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile DLP Policy
Copyright 2017 Forcepoint. All rights reserved.