Data Loss Prevention

 View Only
Back to discussions
Expand all | Collapse all

Network Discover - Need assistance in excluding specific tables/columns from scanning

  • 1.  Network Discover - Need assistance in excluding specific tables/columns from scanning

    Posted Aug 23, 2017 12:36 PM

    Good afternoon! This is my first forum post here on Symantec Connect. I am the admin of the recent rollout of DLP Enforce 14.6. I am wondering if there is anyone who is familiar with configuring Network Discover to exclude specific tables/columns of data from scheduled Dsicover scanning? I ma sure it can be done, but I am not even sure where to begin here. These DB's are Oracle (SQL) DB's. I am looking to exclude known PII from the current scans so that if new PII becomes present on these DB's, I would receive incidents.

    I appreciate any assistance that anyone could give.

    Thank you in advance!

    Adam Powell



  • 2.  RE: Network Discover - Need assistance in excluding specific tables/columns from scanning

    Posted Aug 24, 2017 09:29 AM

    If you have specific values you want to exclude, I'm afraid the only way to do that is to create a keywod match exception within your policy (as opposed to some setting in the discover scan target).

    It sounds like the PII you want to exclude is similar enough to those you actually WANT to detect so pattern matching (RegEx) would not be suitable.