Reference Guide
Dell Security Center v10.2.7 AdminHelp
111
In Windows for Office documents and PDFs, use the Content Based Protection Rules policy to set rules
that enforce encryption on sensitive data. Data Guardian sweeps users' computers when you set the
rules and if you modify the rules.
Note: Users also have the option to right-click a file that has been analyzed by Content Based
Protection and select Protect File.
You can set content-based rules at the Enterprise, Endpoint Groups, or Endpoints populations. Dell
recommends that IT best practices are followed during the deployment. This includes, but is not limited
to, controlled test environments for initial tests and staggered deployments to users.
Initially, in Actions, do not select the Encrypt check box for any rule. View the audit event reports to see
the amount of data returned and the number of endpoints affected. Then modify your rules. To store a
large amount of data, see Export Dell Data Guardian Audit Events to SIEM a Server
.
To configure the Content Based Protection Rules policy:
1. In the Data Guardian technology group, set these policies to On:
• Protected Office Documents
• Content Based Protection (previously Classification)
2. Click Edit Rules. Edit and delete icons display for each rule category. An Elements button
displays at the bottom.
3. Configure the rule name, priority, rules, elements, and actions:
• Modify_a_Content-Based_Rule
• Content-Based_Rule_Name_and_Priority
• View_Audit_Event_Reports
4. Each time you add or modify a rule, you must click Save beneath the Content Based Protection
Rules policy.
Note: If you navigate away from this page without clicking Save at the bottom, your changes are
not saved.
5. When finished, click Save in the upper-right and commit the policy.
The sweep for Content Based Protection does not include folders for your cloud storage provider. Also,
if a file is already encrypted, the sweep does not rescan it to protect it based on the content rule.
Modify a Content-Based Rule
The Content Based Protection Rules policy allows you to modify:
• Content-Based_Rule_Name_and_Priority - The policy lists sample rule names in the
Categories list with default priorities that you can modify:
o Restricted - priority 3, the highest
o Internal Use - priority 2
o Public - priority 1, the lowest. The lowest priority displays (default) after the rule name,
and no rules or actions apply.
Important: Optionally, you can delete the rules in the Categories list, but the policy
requires a minimum number. See Delete
.
• Actions: