Cisco Cisco Email Security Appliance C160 Mode D'Emploi

18-4

User Guide for AsyncOS 9.7 for Cisco Email Security Appliances

Chapter 18 Data Loss Prevention

System Requirements for Data Loss Prevention

Note

The following actions occur only on the Email Security appliance:

•

Outgoing mail policy definition

•

Message action definition

•

DLP scanning

System Requirements for Data Loss Prevention

Data Loss Prevention is supported on all supported C-Series and X-Series appliances except appliances
using D-Mode licenses.

The RSA Enterprise Manager feature requires Enterprise Manager 9.0.

RSA Email DLP

Related Topics

•

How to Set Up Data Loss Prevention for Deployments Using RSA Email DLP, page 18-4

•

Enabling Data Loss Prevention (RSA Email DLP), page 18-5

How to Set Up Data Loss Prevention for Deployments Using RSA Email DLP

Perform these steps in order:

Do This

More Information

Step 1

Enable the DLP feature and choose RSA Email DLP as the
deployment option.

Enabling Data Loss Prevention (RSA Email DLP),
page 18-5

Step 2

Define the possible actions that can be taken for messages
in which violations are found or suspected. For example,
you can quarantine such messages.

Message Actions, page 18-33

Step 3

Create DLP policies, which:

•

identify the content that must not be emailed from your
organization, and

•

specify which actions will be taken for each violation.

Choose a method:

•

Setting Up RSA Email DLP Using a Wizard,
page 18-7

•

Creating a DLP Policy Using a Predefined
Template, page 18-8

•

Creating a Custom DLP Policy (Advanced),
page 18-9

Step 4

Set the order of the DLP policies to determine which DLP
policy is used to evaluate messages for DLP violations
when the content could match more than one DLP policy.

Arranging the Order of the Email DLP Policies for
Violation Matching, page 18-21