We are going to roll out Windows 8 to some computers which the last I read is not supported by the DLP agent. So, for now, there can be no DLP agent for that group of computers.
We are assuming DLP support for Windows 8 is coming soon and will deploy the new agents then.
We also have computers on the network from business partners where we don't manage them or and may not be able to install a DLP agent even if the OS they use supports it. They can access files using their employer's laptops by connecting to our network shares and mapping network drives using their domain user credentials (for our domain) even though their laptops are not members of our domain.
Users could also use a smartphone and install a file-browsing app to copy files to an Android or iPhone or tablet etc..
I understand that once data is copied to an unmanaged device, there is nothing that can be done to it by DLP. So, what product monitors data being copied to devices that don't have the DLP agent installed so we will at least know what was sent to those devices and possibly set up rules to either log reports on what was sent to those devices or block certain data from being copied to unmanaged devices over the network.
Is this a scenario Network Monitor handles?