Cisco Cisco Email Security Appliance C190 Mode D'Emploi

On the Email Security appliance, define the actions that 
can be taken for messages in which DLP violations are 
found or suspected. 

For example, you can quarantine such messages.

Obtain and upload certificates for secure communications 
between the Email Security appliance and Enterprise 
Manager.

See 

On the Email Security appliance, select RSA Enterprise 
Manager for the ESA's DLP Mode and configure the 
connection between the Email Security appliance and 
Enterprise Manager. 

Provide the LDAP distinguished names of message 
senders to Enterprise Manager. 

If you will export DLP policies from the Email Security 
appliance and import them into Enterprise Manager, do so 
now. 

To export RSA Email DLP policies from the Email 
Security appliance, see 

. 

To import the policies, see the RSA Enterprise Manager 
documentation. 

On Enterprise Manager, create DLP policies to: 

identify the types of content to be considered 
violations, and 

specify which actions will be taken for each 
violation. 

Follow instructions for creating DLP policies in RSA’s 
documentation for DLP Datacenter, including the online 
help and the technical note Managing Partner Device 
DLP with Enterprise Manager.

On Enterprise Manager, specify which DLP policies 
apply to which senders and recipients by associating DLP 
policies with Outgoing Mail Policies. 

See 

On Enterprise Manager, specify the order of the DLP 
policies.

When the appliance evaluates messages for DLP 
violations, it applies only the first matching policy in the 
list. 

Order the DLP policies in Enterprise Manager. See the 
RSA Enterprise Manager documentation. 

On the Email Security appliance, configure settings for 
storage of and access to sensitive DLP information in 
Message Tracking.