Hi guys
I am currently facing the setup of two new DLP environments.
Thing is, there are two potential possibilities to setup and run the servers (1x DB, 1xEnforce/Endpoint Prevent):
Option 1:
DB and DLP server locally installed.
Option 2:
DB and DLP server remotely installed at HQ and accessed from the agents over a slow network (4Mbps over all).
Since the remote locations are truly on the other side of the world, I am unsure of how network latency will affect the performance of the local workstations.
I am using Keyword Matching with Endpoint Prevent, providing the user a "user cancel" box if a detection took place. The policies get distributed daily.
Preferred surely would be option 1, but ever since option 2 is the option with less financial impact (due to licences, no upgrade on hardwara and so on), it obviously is an option for the management.
So, does anybody already have any kind of experience with environments like these in option 2?
Any help and inputs appreciated!