Data Loss Prevention

Hello everyone!

I'm implementing DLP solution. My scenario is the following:

---------------------------------------------------------------------------------------------------------------------------------------------------

Enforce ----------- Detection (Endpoint) -------- Altiris SMP (For deploying agent) ------- DLP Client

---------------------------------------------------------------------------------------------------------------------------------------------------

I have a rule for blocking copying sensitive files to removable devices such as USB and DVD

However, I'm looking for a response rule for e-mail. I want to block sensitive data being sent via e-mail attachments (such as OWA, or local e-mail servers)

I do know I can use Network Prevent for Email but, in this particular case, I need to use Endpoint Prevent only

Is it possible? Any ideas how? Thanks in advance!

endpoint will monitor te endpoint agents.

email prevent license is needed for the email monitoring/prevent.

Yes, you can use DLP agent to block email message from mail client and OWA.

You need to select the relevant options under Agent Configuration, such as below screenshot:

And, also, as pete mentioned, you need the Endpoint Prevent license:

Thanks for the reply. 

Can you tell me which configuration should I use on the response rule??? 

An Endpoint Prevent response would be the correct one as this deals w/ Endpoint PRevent

For the response rule, you can choose 'Endpoint Prevent: Block', such as the screenshot below:

Thanks yang_zhang. It worked great.

Thanks Yang,

Nice solution and explaination.

This is exactly my configuration.  I have a policy to find social security numbers using the data identifier.  The response rule blocks send SSN through Notes, but it does not block when using web mail in IE or Firefox even though both of those options are selected.

Any ideas?