Data Loss Prevention

 View Only

  • 1.  are we able to have an attachment inside an incident

    Posted Aug 19, 2014 11:30 PM
    Are. We able to have an attachment inside an incident? If so how can I do it?


  • 2.  RE: are we able to have an attachment inside an incident

    Posted Aug 20, 2014 12:26 AM

    Hello dan87,

    yes, it is possible  - to have an incident  with attachment. Steps: Just add to the policy a response rule "Limit data Retention".



  • 3.  RE: are we able to have an attachment inside an incident

    Posted Aug 20, 2014 12:39 AM
    Remez thanks! I will try it out


  • 4.  RE: are we able to have an attachment inside an incident

    Posted Aug 20, 2014 12:42 AM
    Just to check I will be able to view the data inside the attachment right?


  • 5.  RE: are we able to have an attachment inside an incident

    Posted Aug 20, 2014 12:53 AM

    yes of course - when you click on a file with a violation in a incident snapshot  - will be open original file (shadow copy).



  • 6.  RE: are we able to have an attachment inside an incident

    Posted Aug 20, 2014 02:12 AM

    Hi ,

    Check this below Link

     

    https://www-secure.symantec.com/connect/forums/dlp-116-endpoint-agents-not-capturing-attachments-incidents