Data Loss Prevention

Hi everyone,

Can we create a policy for a endpoint using its hostname credentials ?

we can see IP address and Endpoint ID. But where can we set hostname in a policy.

Any help and input is appreciated.

Do you want to create a policy for one specific endpoint only?

Hi,

If the purpose is to apply a policy only to one IP address / Endpoint, you need to declare it in Policy detection.

Note: on the initial screen "Rule Type" you don't have this option, so:

1 - Go to your policy and create a new Detection Rule (Add Rule)

2 - choose Content macthes keyword (example), give it a name and insert a test Regular expre4ssion;

3 - ALSO MATCH Sender/User matches pattern -> define IP address.

4 - Delete Content Matches Regular Expression option.

This is just an example of how to declare an IP in detection. If you want to combine it with other detection method, just add the detection rule you want (therefore, detection must be Rule X AND Sender/User Matches Pattern.

Hope that helps you.

Regards,

Paulo

Thank you Paulo,

The above solution can be configured using IP address that define the endpoint.

Defining through IP address would be right one, as IP address are static one.  

But I'm looking of we can define a endpoint using it hostname "Laptop50010" something like this.

Can we bulid around a Regex around it or there is any way to configure hostname.

Kindly help.

Juilee

How about configuring an AD group that contains the workstations?