Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

How to report on data going to "unsupported" computers on the local network?

Created: 03 Mar 2013 • Updated: 13 Mar 2013 | 2 comments
This issue has been solved. See solution.

We are going to roll out Windows 8 to some computers which the last I read is not supported by the DLP agent. So, for now, there can be no DLP agent for that group of computers.

We are assuming DLP support for Windows 8 is coming soon and will deploy the new agents then.

We also have computers on the network from business partners where we don't manage them or and may not be able to install a DLP agent even if the OS they use supports it.  They can access files using their employer's laptops by connecting to our network shares and mapping network drives using their domain user credentials (for our domain) even though their laptops are not members of our domain.

Users could also use a smartphone and install a file-browsing app to copy files to an Android or iPhone or tablet etc.. 

I understand that once data is copied to an unmanaged device, there is nothing that can be done to it by DLP.  So, what product monitors data being copied to devices that don't have the DLP agent installed so we will at least know what was sent to those devices and possibly set up rules to either log reports on what was sent to those devices or block certain data from being copied to unmanaged devices over the network.

Is this a scenario Network Monitor handles?

Comments 2 CommentsJump to latest comment

kishorilal1986's picture
yes, even though the machine that have no support for DLP agents and not having agents to monitor user activity but it can be monitor through the networks monitor/prevent as they will use compan's network to do data transfer activity.
 
At the same time either u can implement DLP for smartphoen/Tablet or restrict the unmanages device or website through which there is chance of data leakage for this read below how u can do this.
 
https://www-secure.symantec.com/connect/forums/dlp-endpoint-endpoint-protection-interoperability
 
https://www-secure.symantec.com/connect/forums/can-you-configure-specific-dlp-endpoint-agent-block-copy-removable-media#comment-7103551
 
https://www-secure.symantec.com/connect/forums/does-symantec-dlp-block-data-leakage-dropbox-googledrive-etc
SOLUTION
NetUser's picture

My understanding is that DLP for tablet was not a practical or useful product for most companies because the list of products it supports is so limited ( outdated iOS 5 only??) and it requires users to go through your proxy to connect to the Internet at all times even when they are away from the office and not using any company resources such as using Google Maps or playing an online game at home on the weekend.

I cannot see this implemented in many places in it's current form.