Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile DLP Policy
Configuring the Mobile DLP Policy
Administrator Help | Forcepoint DLP | Version 8.5.x
Related topics:
*
Configuring mobile DLP attributes
*
Defining policy owners
Use the Forcepoint DLP mobile DLP quick policy to define what content can and cannot be sent to mobile devices—such as phones and iPads—from network email systems. This can be used to protect data in case an employee's mobile device is lost or stolen.
The system analyzes content when users synchronize their mobile devices to their organization's Exchange server. If content being pushed to the device breaches the mobile DLP policy, it is handled according to the policy, whether the content is part of an email message, calendar item, or task.
Mobile policies are set for user directory entries (users and groups), business units, or custom users, not individual mobile devices. In other words, sensitive data can be blocked from being sent to John Doe's mobile devices, but not to a particular device ID.
The mobile DLP policy requires a subscription to Forcepoint DLP Endpoint. In addition, the mobile agent must be installed in the DMZ and connected to both an Exchange server and the Forcepoint management server. (See Configuring the mobile agent for more information.)
Note that the mobile DLP policy applies to mobile email only.
*
To monitor network email, configure the email DLP policy.
*
To monitor endpoint email, configure a custom policy.
Mobile DLP policy configuration overview
Use the Main > Policy Management > DLP Policies > Mobile DLP Policy page in the Data Security module of the Forcepoint Security Manager to configure the mobile DLP policy.
1.
On the Attributes tab, specify the attributes to monitor in email synchronized to mobile devices—for example, attachment type—and configure attribute properties. When these settings are matched, the policy is triggered.
See Configuring mobile DLP attributes.
2.
Identify users that don't need to be monitored (trusted users), if any.
See Defining mobile DLP trusted users.
3.
Identify one or more owners for the policy.
See Defining policy owners.
4.
Click OK.
 
* 
Note 
The mobile DLP policy cannot be deleted or renamed, but its attributes can be enabled or disabled.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile DLP Policy
Copyright 2017 Forcepoint. All rights reserved.