Technical Library | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile Data Loss Prevention Policy
Configuring the Mobile Data Loss Prevention Policy
Administrator Help | TRITON AP-DATA | Version 8.3.x
Related topics:
*
Configuring attributes
*
Defining policy owners
TRITON AP-DATA lets you define what content can and cannot be sent to mobile devices—such as phones and i-pads—from network email systems. Most organizations employ such a policy to protect their data in case an employee's mobile devices is lost or stolen.
The system analyzes content when users synchronize their mobile devices to their organization's Exchange server. If content being pushed to the device breaches the organization's mobile DLP policy, it is quarantined or permitted accordingly, whether that content is part of an email message, calendar item, or task.
Mobile policies are set for user directory entries (users and groups), business units, or custom users, not individual mobile devices. In other words, you can prevent sensitive data being sent to John Doe's mobile devices, not to a particular device ID.
To use this feature, you must have a subscription to TRITON AP-ENDPOINT DLP, and you must install the mobile agent in your DMZ and connect it to both your Exchange server and the TRITON management server. (See Configuring the mobile agent for more information.)
Note that the mobile DLP policy applies to mobile email only. To monitor network or endpoint email, configure an email DLP or custom policy, respectively.
To configure the mobile DLP policy
1.
In the Data module of the TRITON Manager, select Main > Policy Management > DLP Policies > Mobile DLP Policy. A quick-start mobile data loss prevention (DLP) policy is provided.
2.
On the Attributes tab, select and enable the attributes to monitor in email that is being synchronized to mobile devices from network Exchange servers—for example message size or attachment type. Configure properties for those attributes. When the settings you configure are matched, the policy is triggered.
See Configuring attributes for instructions on completing the fields.
3.
Identify users that don't need to be monitored (trusted users), if any.
4.
Identify an owner or owners for the policy. See Defining policy owners for instructions.
5.
Click OK.
 
* 
Note 
You cannot delete or rename your mobile policy, but you can enable or disable attributes.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring the Mobile Data Loss Prevention Policy
Copyright 2016 Forcepoint LLC. All rights reserved.