Cisco Cisco Email Security Appliance X1070 Betriebsanweisung
11-3
Cisco IronPort AsyncOS 7.6 for Email Configuration Guide
OL-25136-01
Chapter 11 Data Loss Prevention
Both RSA Email DLP and RSA Enterprise Manager offer the option to log the content that violates your
DLP policies, along with the surround content, which can then be viewed in the Message Tracking. This
content may include sensitive data such as credit card numbers and social security numbers. Do not
select this option if you don’t want the appliance to log this information.
DLP policies, along with the surround content, which can then be viewed in the Message Tracking. This
content may include sensitive data such as credit card numbers and social security numbers. Do not
select this option if you don’t want the appliance to log this information.
You can switch back to managing data loss prevention on the local appliance using RSA Email DLP
whenever you want.
whenever you want.
Enabling RSA Email DLP
Note
If you want to use the DLP Assessment Wizard to configure the appliance’s DLP policies, see
.
Step 1
Select Security Services > RSA Email DLP.
Step 2
Click Enable.
Step 3
The license agreement page is displayed.
Note
If you do not accept the license agreement, RSA Email DLP is not enabled on the appliance.
Step 4
Scroll to the bottom of the page and click Accept to accept the agreement.
Step 5
Under Data Loss Prevention, select RSA Email DLP.
Step 6
Check the Enable RSA Email Data Loss Prevention check box.
Step 7
If message tracking is already enabled on your appliance, choose whether or not to enable matched
content logging. By selecting this, the Cisco IronPort appliance logs DLP violations and AsyncOS
displays the DLP violations and surrounding content in Message Tracking, including sensitive data such
as credit card numbers and social security numbers.
content logging. By selecting this, the Cisco IronPort appliance logs DLP violations and AsyncOS
displays the DLP violations and surrounding content in Message Tracking, including sensitive data such
as credit card numbers and social security numbers.
Step 8
Submit and commit your changes.
Enabling RSA Enterprise Manager
If you want to use RSA Enterprise Manager to manage data loss prevention for your appliances, you need
to configure your Email Security appliance as a partner device for Enterprise Manager. After you
configure the RSA Enterprise Manager settings, the Email Security appliance sends its configuration to
Enterprise Manager, which automatically adds the appliance as a partner device. The next time you open
Enterprise Manager, the appliance will be shown as a partner device.
to configure your Email Security appliance as a partner device for Enterprise Manager. After you
configure the RSA Enterprise Manager settings, the Email Security appliance sends its configuration to
Enterprise Manager, which automatically adds the appliance as a partner device. The next time you open
Enterprise Manager, the appliance will be shown as a partner device.
If you want to use SSL for communication between the Email Security appliance and Enterprise
Manager, import one or more certificates to use as a server and client certificate into the appliance along
with a certificate file for a certificate authority. The server and client certificates can be the same
certificate, but must have the Email Security appliance’s hostname for the common name. You can use
a certificate generation tool provided by RSA to create the certificate, if you choose. See
Manager, import one or more certificates to use as a server and client certificate into the appliance along
with a certificate file for a certificate authority. The server and client certificates can be the same
certificate, but must have the Email Security appliance’s hostname for the common name. You can use
a certificate generation tool provided by RSA to create the certificate, if you choose. See
for more information.