Cisco Cisco Email Security Appliance C160 Mode D'Emploi
18-24
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 18 Data Loss Prevention
RSA Enterprise Manager
policies and message actions that you configured on the Email Security appliance appear in Enterprise
Manager, ready for you to use when configuring DLP policies. (Alternately, you can export existing DLP
policies from the Email Security appliance to Enterprise Manager.)
Manager, ready for you to use when configuring DLP policies. (Alternately, you can export existing DLP
policies from the Email Security appliance to Enterprise Manager.)
After you configure DLP policies on Enterprise Manager, Enterprise Manager sends the DLP policies to
the Email Security appliance. By default, all DLP policies pushed by Enterprise Manager are enabled on
all devices they’re pushed to, including Email Security appliances.
the Email Security appliance. By default, all DLP policies pushed by Enterprise Manager are enabled on
all devices they’re pushed to, including Email Security appliances.
The Email Security appliance stores the DLP policies it receives from Enterprise Manager and uses them
to scan outgoing messages for violations, and take action on any violations found. The Email Security
appliance processes messages that are released for delivery, including encrypting the message if
applicable. The Email Security appliance sends information about violations to Enterprise Manager for
viewing and management.
to scan outgoing messages for violations, and take action on any violations found. The Email Security
appliance processes messages that are released for delivery, including encrypting the message if
applicable. The Email Security appliance sends information about violations to Enterprise Manager for
viewing and management.
Related Topics
•
•
Enterprise Manager Documentation
For this deployment, you may need the following documentation from RSA Inc.:
•
Managing Partner Device DLP with Enterprise Manager (technical note). Instructions on setting up
Enterprise Manager and using it to manage the DLP features of partner devices, including Cisco
Email Security appliances.
Enterprise Manager and using it to manage the DLP features of partner devices, including Cisco
Email Security appliances.
•
RSA DLP Network 9.0 Deployment Guide. Instructions on deploying RSA DLP software on a
network.
network.
•
RSA DLP Network 9.0 User Guide. Instructions for using the RSA DLP Network software, including
how to use Enterprise Manager to manage partner DLP devices such as the Cisco Email Security
appliance.
how to use Enterprise Manager to manage partner DLP devices such as the Cisco Email Security
appliance.
How to Set up Data Loss Prevention in Deployments with RSA Enterprise
Manager
Manager
Perform these steps in order:
Do This
More Information
Step 1
Set up Enterprise Manager on your network and prepare
for partnering with the Email Security appliance.
for partnering with the Email Security appliance.
See RSA’s documentation for DLP Datacenter, including
the online help and the technical note Managing Partner
Device DLP with Enterprise Manager.
the online help and the technical note Managing Partner
Device DLP with Enterprise Manager.
Step 2
On the Email Security appliance, create Outgoing Mail
Policies to determine which messages will be scanned for
DLP violations.
Policies to determine which messages will be scanned for
DLP violations.
Different policies can be assigned to different users or
groups of users.
groups of users.
See
Note:
The outgoing mail policy has an option to specify
recipients. However, for deployments with Enterprise
Manager, this information is not available from LDAP.
recipients. However, for deployments with Enterprise
Manager, this information is not available from LDAP.