Video Screencast Help
Symantec Appoints Michael A. Brown CEO. Learn more.

What are First-Party Applications monitored by DLP EndPoint?

Created: 06 Sep 2013 • Updated: 17 Sep 2013 | 3 comments
This issue has been solved. See solution.

What are First-Party Applications monitored by DLP EndPoint?  The manuals/help say "such as AIM, Microsoft outlook, or Mozilla Firefox".  

Are First-Party apps, the apps listed in the Agent Config under "Enable Monitoring"?  i.e. AIM, MSN, Yahoo  Messaenger, Outlook, Lotus Notes, IE, & Firefox?  If not, where can I find a complete list of the the First-Party apps?

Also, what is the relationship between First-Part apps and the list of apps that come pre-defined in  "Application Monitoring"?  Clearly "Application Monitoring" contains First-Party (Microsoft Outlook) and Third-Party Apps  (Skype).

Notably missing from Agent Config and App Monitoring are Microsoft Office apps - Word, Excel, PP, etc.  I'm trying to figure out if they are "First-Party" apps or if I need to add them each individually to "Application Monitoring".

Any light you can shed on this is appreciated!!!

 

 

 

Operating Systems:

Comments 3 CommentsJump to latest comment

S_A_M's picture

Hello Susan,

Basically what you see under Agent configurations are the detection channels through which the data can be monitored.

If you want to get a list of all the file types which are supported you can check the following :

Go to a policy and add a new rule >

Under : File Properties > Go to : Message Attachment or File Type Match > click on next .

 

Now, you will see all the file types supported with DLP.

 

When you talk about applications like Microsoft Word\Excel\Powerpoint , when they are opened they will be detected through detection channels like clipboard, print-fax, and when you send it through browser\outlook\removable device\network share it will be detected by the respected detection channels.

 

 

We use AFAC ( Application File Access ) when an application like Gtalk tried to access one of the files (or user tries to send some file\confidential data to another user) which can be detected by DLP,

 

For any other applications which is not listed under Agent configuration.

 

 

Please let me know if you have any further quarries. 

 

Thanks,

 

SOLUTION
S_A_M's picture

Susan does that answer your question ??