Video Screencast Help
Protect Your POS Environment Against Retail Data Breaches. Learn More.

SYMANTEC DLP Vontu - Extracting emails out of .pst files during discover scans

Created: 21 Aug 2014 • Updated: 21 Aug 2014 | 3 comments

SYMANTEC DLP ( data loss prevention Vontu ) - Apparently version 12 offers an option to extract individual emails in format .msg .eml out of .pst files

I wanted to scan a file share for pst files and specific keywords from there I would like to extract the emails that contained those keywords into a quarantined locaiton.

Comments 3 CommentsJump to latest comment

jjesse's picture

Do you have Outlook installed on the server that is doing the Network Discvoer scan?  You don't have to have it confiugred with a mail profile it just needs to be able to open up the file.  

Jonathan Jesse Practice Principal ITS Partners

stephane.fichet's picture

as jjesse wrote, you just need to have microsoft outlook proprietray libs available on your server in order to have it able to analyse pst content.

nelsonlee's picture

Please try the following:

version 12.0 on windows

setup your policy with specific keywords

setup a discover scan job with that policy

under "Scanned Content" tab, setup your network share to scan

under "Advanced" tab, check "Scan PST files" in "PST Scanning" section

under "Protect" tab, check "Copy" in "Allowed Protect Remediation" and setup your destination network share to copy to in "Quarantine/Copy Share"