User Guide

ManualsBrandsCisco Manualsantivirus security softwareCisco Email Security Appliance C680

17-26

AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide

Chapter 17 Data Loss Prevention

RSA Enterprise Manager

Related Topics

• Fingerprinting, page 17-26

• (Recommended) Obtaining and Uploading Certificates for SSL Connections between Email

Security Appliances and Enterprise Manager, page 17-26

• Enabling Enterprise Manager DLP and Configuring the Connection with the Email Security

Appliance, page 17-29

• Using LDAP to Identify Message Senders for Enterprise Manager, page 17-30

• About Associating Outgoing Mail Policies with DLP Policies in Enterprise Manager Deployments,

page 17-31

Fingerprinting

If your Enterprise Manager deployment includes RSA’s DLP Datacenter, you can enable fingerprinting.

Fingerprinting improves detection of source code and sensitive documents including:

• Databases

• Full or partial text matches in the text of a document

• Full binary match, which is a bit-by-bit exact match of a file

If you enable fingerprinting, Enterprise Manager sends fingerprinting detection information to the Email

Security appliance, and the Email Security appliance uses this information when scanning messages for

Data Loss Prevention.

For more information about fingerprinting, see the Enterprise Manager documentation.

Related Topics

• Enabling Enterprise Manager DLP and Configuring the Connection with the Email Security

Appliance, page 17-29

(Recommended) Obtaining and Uploading Certificates for SSL Connections between Email Security

Appliances and Enterprise Manager

If you want to use an SSL connection between the Email Security appliance and Enterprise Manager,

you will need one or more certificates and signing keys from a recognized certificate authority to use for

mutual authentication of the two machines.

Step 10

On Enterprise Manager, specify the order of the DLP

policies.

When the appliance evaluates messages for DLP

violations, it applies only the first matching policy in the

list.

Order the DLP policies in Enterprise Manager. See the

RSA Enterprise Manager documentation.

Step 11

On the Email Security appliance, configure settings for

storage of and access to sensitive DLP information in

Message Tracking.

• Showing or Hiding Sensitive DLP Data in Message

Tracking, page 17-38

• Controlling Access to Sensitive Information in

Message Tracking, page 32-5

Do This More Information