Cisco Cisco Email Security Appliance C390 ユーザーガイド
18-25
Cisco AsyncOS 9.5 for Email User Guide
Chapter 18 Data Loss Prevention
RSA Enterprise Manager
Do This
More Information
Step 1
Set up Enterprise Manager on your network and prepare
for partnering with the Email Security appliance.
for partnering with the Email Security appliance.
See RSA’s documentation for DLP Datacenter, including
the online help and the technical note Managing Partner
Device DLP with Enterprise Manager.
the online help and the technical note Managing Partner
Device DLP with Enterprise Manager.
Step 2
On the Email Security appliance, create Outgoing Mail
Policies to determine which messages will be scanned for
DLP violations.
Policies to determine which messages will be scanned for
DLP violations.
Different policies can be assigned to different users or
groups of users.
groups of users.
See
Note:
The outgoing mail policy has an option to specify
recipients. However, for deployments with Enterprise
Manager, this information is not available from LDAP.
recipients. However, for deployments with Enterprise
Manager, this information is not available from LDAP.
Step 3
On the Email Security appliance, define the actions that
can be taken for messages in which DLP violations are
found or suspected.
can be taken for messages in which DLP violations are
found or suspected.
For example, you can quarantine such messages.
Step 4
Obtain and upload certificates for secure communications
between the Email Security appliance and Enterprise
Manager.
between the Email Security appliance and Enterprise
Manager.
See
Step 5
On the Email Security appliance, select RSA Enterprise
Manager for the ESA's DLP Mode and configure the
connection between the Email Security appliance and
Enterprise Manager.
Manager for the ESA's DLP Mode and configure the
connection between the Email Security appliance and
Enterprise Manager.
Step 6
Provide the LDAP distinguished names of message
senders to Enterprise Manager.
senders to Enterprise Manager.
Step 7
If you will export DLP policies from the Email Security
appliance and import them into Enterprise Manager, do so
now.
appliance and import them into Enterprise Manager, do so
now.
To export RSA Email DLP policies from the Email
Security appliance, see
Security appliance, see
.
To import the policies, see the RSA Enterprise Manager
documentation.
documentation.
Step 8
On Enterprise Manager, create DLP policies to:
•
identify the types of content to be considered
violations, and
violations, and
•
specify which actions will be taken for each
violation.
violation.
Follow instructions for creating DLP policies in RSA’s
documentation for DLP Datacenter, including the online
help and the technical note Managing Partner Device
DLP with Enterprise Manager.
documentation for DLP Datacenter, including the online
help and the technical note Managing Partner Device
DLP with Enterprise Manager.
Step 9
On Enterprise Manager, specify which DLP policies
apply to which senders and recipients by associating DLP
policies with Outgoing Mail Policies.
apply to which senders and recipients by associating DLP
policies with Outgoing Mail Policies.
See