How to Configure SphereShield for SfB DLP?

1. Open the SphereShield Portal
2. Go to Settings→ DLP Integration (/admin/settings?category=settings_dlp_integration_category_header)
3. Enable DLP Integration by chaning the "Enable DLP Integration" option to "Yes"
4. Choose DLP provider - 3rd Party or AGAT for Regex Based rules (Configure in /admin/dlprules)

The following fields are relevant for all DLP Providers:

• Block Traffic when DLP engine is not available – In the case there is no response from the server, all traffic that should be inspected will be blocked (If set on "Yes").
• Filter only outgoing IM Traffic – Filter only traffic that flows from the organization on federation
• Enable DLP for conferences – If set on "Yes", enables DLP policies on conference conversation as well.
• Internal SIP Domain List – Enter your internal SIP domains. After entering a SIP domain press tab or enter.
• Check DLP on – Check the server on which you'd like to run DLP on (Multiple choice).
• Enable DLP Auditing – Enabling this will input DLP incidents into the Auditing table located in Support & Maintenance → DLP Auditing. This will include the original message.
• Admin Notification Type - Notification to send to an administrator when DLP incidents Occur, choice between 3 options: Log; Log and Mail; Log, Mail and IM.
  
• User Notification Type – Notification to send to an end-user when DLP incidents occur. A choice between 2 options: None, IM.
  
• Record Active Directory Users Information – If set to "Yes", will fetch the CN of the AD user for enhanced logging. This might impact performance.

Related Articles: