Hello and good morning everyone
I currently came across a potential situation where I lack the understanding of the possibilities of Symantec DLP.
In a nutshell:
An environment containing one server (Enforce and Endpoint Prevent installed on it) is in use and all working well.
Now, various new branch offices are to be set up. Due to regulations, these offices will not be treated as "internal" and therefore will be denied to connect to the current DLP environment. They need to connect to a server in a DMZ network.
Then again, the currently used environment may not be moved into DMZ due to the DB connection.
Means: A new server needs to be set up in the DMZ as a "slave" / "secondary" server, only managing the branch office agents and containing / distributing the same policies as the "master" / "primary".
I tried to viaualize the matter in a quick drawing:
Is there any way to achieve this? What is needed effectively to do so?
Cheers