- Open the SphereShield Portal
- Go to Settings→ DLP Integration (/admin/settings?category=settings_dlp_integration_category_header)
- Enable DLP Integration by chaning the "Enable DLP Integration" option to "Yes"
- Choose DLP provider - 3rd Party or AGAT for Regex Based rules (Configure in /admin/dlprules)
The following fields are relevant for all DLP Providers:
- Block Traffic when DLP engine is not available – In the case there is no response from the server, all traffic that should be inspected will be blocked (If set on "Yes").
- Filter only outgoing IM Traffic – Filter only traffic that flows from the organization on federation
- Enable DLP for conferences – If set on "Yes", enables DLP policies on conference conversation as well.
- Internal SIP Domain List – Enter your internal SIP domains. After entering a SIP domain press tab or enter.
- Check DLP on – Check the server on which you'd like to run DLP on (Multiple choice).
- Enable DLP Auditing – Enabling this will input DLP incidents into the Auditing table located in Support & Maintenance → DLP Auditing. This will include the original message.
- Admin Notification Type - Notification to send to an administrator when DLP incidents Occur, choice between 3 options: Log; Log and Mail; Log, Mail and IM.
- User Notification Type – Notification to send to an end-user when a DLP incidents occur. Choice between 2 options: None, IM.
- Record Active Directory Users Information – If set to "Yes", will fetch the CN of the AD user for enhanced logging. This might impact performance.