User Guide
17-4
AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide
Chapter 17 Data Loss Prevention
System Requirements for Data Loss Prevention
Note The following actions occur only on the Email Security appliance:
• Outgoing mail policy definition
• Message action definition
• DLP scanning
System Requirements for Data Loss Prevention
Data Loss Prevention is supported on all supported C-Series and X-Series appliances except appliances
using D-Mode licenses.
The RSA Enterprise Manager feature requires Enterprise Manager 9.0.
RSA Email DLP
Related Topics
• How to Set Up Data Loss Prevention for Deployments Using RSA Email DLP, page 17-4
• Enabling Data Loss Prevention (RSA Email DLP), page 17-5
How to Set Up Data Loss Prevention for Deployments Using RSA Email DLP
Perform these steps in order:
Do This More Information
Step 1
Enable the DLP feature and choose RSA Email DLP as the
deployment option.
Enabling Data Loss Prevention (RSA Email DLP),
page 17-5
Step 2
Define the possible actions that can be taken for messages
in which violations are found or suspected. For example,
you can quarantine such messages.
Message Actions, page 17-34
Step 3
Create DLP policies, which:
• identify the content that must not be emailed from your
organization, and
• specify which actions will be taken for each violation.
Choose a method:
• Setting Up RSA Email DLP Using a Wizard,
page 17-7
• Creating a DLP Policy Using a Predefined
Template, page 17-8
• Creating a Custom DLP Policy (Advanced),
page 17-9
Step 4
Set the order of the DLP policies to determine which DLP
policy is used to evaluate messages for DLP violations
when the content could match more than one DLP policy.
Arranging the Order of the Email DLP Policies for
Violation Matching, page 17-21