Privacy-i Admin Manual
Contents
1. 43 4 2 og Abe 44 4 2 1 DISCOVENY Q 46 e EEN 46 4 2 2 safer S 52 4 3 alen Pc 55 4 3 1 IT 55 AE PE See E 55 4 3 2 ele Tel 56 4 4 er M I EE 59 4 4 1 DetectoM LEE 59 4 4 2 bj 60 A MN a EE 60 4 4 3 End oreja do 63 5 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 44 3 1 Copy PreveNtt 64 4 4 3 2 Print Pr EVEN tt EEN 66 443 3 Oe 67 44 34 Policy Application Time tette tabes etc EE 68 444 CODFICHODS ee 68 4 4 5 Apply to WE EC 70 LE MMC c M 70 4 5 iss m TEE 72 4 5 1 P H 72 e E a AT 72 EE UE d E 73 2 5 1 3 ege e 75 45 2 Admin e E 76 A520 H R 76 4 5 3 Alertsdhottttcation see 78 45 3 4 EES EE 78 4 5 4 NI SOUS 81 4 6 SYSTE M 85 4 6 1 o E 85 A 6 1 1 System Koo E rt 85 AGZ A a A MA AA pee ae 87 AGS MOS EE 89 4 6 3 1 Uninstall Password Generator 89 6 tat SOMANSA Copyright 2015 SOMANSA All rights reserved 5 7 Privacy v5 0 Admin2. Mail Settings Subject Body a FIGURE 4 40 REPORT NOTIFICATION DETAILS SCREEN Report Notification Details Report Type One of the report details of Discover PCs Discover Servers and Endpoint DLP can be selected 79 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual SS Report Type Discover PCs Endpoint O Top Users Top Users Top Depts Top Depts Trends Trends Top Long Term Retention Top Channels Files Top Patterns Top Patterns Long Term Offline Agents Agent Installation Top Agent Top Users by Data Type Top Depts by Data Type Trend of Data Type Top Patterns Dy Data Type Top Agents by Data Type Figure 4 41 Report Type Screen Filter Settings Recent Inspection Date Ranking Criteria and Pattern can be selected and a filter can be applied Filter Settings Date ET Last2 Months Last3 Months Last6 Months Last Year Custom Sort By eatem File Pattern Select B Print Information All Pattern File Pattern Detail S included Not Include Figure 4 42 Filter Settings Screen Target to Inspection A department or a user can be selected for Inspection Summary Target Target to Inspection Target Name Company Figure 4 43 Target to Inspection Screen Target to Notification Notification target can be selecte
3. Top Pattems Pater Fie T See Total Total 13964 133 Ochan a Encrypted Rank 2500 2000 1500 1000 BOSS Not Encrypt am d US Driver s ALL Credit Card KR Credit Card US Drivers US Medical ALL IP Address US Social ALL E Mail KR Resident BR Cadastro License Number Number Number License Number Record Number Security Number egistration Nacional Pessoa Pattern Fil Rank Name Severiy Total Total 1 157 Ic oo0o00 x 2 TT 3 5nd E o emm 5 o E s aaa 7 947 D aaa s ze O 3 300 So M 10 350 IO M 300 M B 300 E m E 300 M 14 300 E M E 300 Hood 16 298 7 ter AZ CA KS MA NE OK VA etc a c0 n 18 143 O M 13 143 SS 20 a SS n 20 Eet n 10 SS Showing 1 2022 of m FIGURE 4 11 REPORT PC RESULTS FOR TOP PATTERNS Long Term Offline Agents Displays data based on agents which were offline on the server for an extended period of time ist SOMANSA 48 Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Long Term Offline Agents Chan A Offline Agents 14 12 O 7 less Dani days 2 count 10 ss then 78 8 count sjinlee sjinlee TestA nieft TestA Not Connected Day s Recent Access Time User Computer Name Access IP sine 73 2015 03 17 19 00 01 SINLEENEW 1923680217 a 2 20090338 143502 SOMANSA_QA PC 192 168 5207 2015 03 18 13 00 01 Asc 192 168 860 hinnieot 2015 03 25 14 49 18 HINNIE MAIN 192168312 Tena 4 2015 03 26 11
4. Employee Number Email Telephone Role Leader or Admin Chief Privacy Officer Only one in the company rivacy Officer only one in the group rivacy Manager E Agent IP MAC Authentification Settings On iv Add IP d Mac Address FIGURE 4 48 USER MANAGEMENT DETAILS ie Policy Item Description Dept Department registered in MANAGER gt Users gt Dept Management can be selected and a user is registered to the selected department Start Date An available start date of the account to register can be entered End Date An available end date of the account to register can be entered Employee Number Employee number of the account user to register can be entered Email Email of the account user to register can be entered o0 OG Q Telephone Phone number of the account user to register can be entered Effective Input Field Range 82 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual TABLE 4 19 EFFECTIVE INPUT FIELD RANGE WHEN REGISTERING USERS Effective EX M NN Numbers uppercase Enter user name User 1 225 lowercase letters special characters Numbers uppercase Enter user ID User ID 4 lowercase letters special characters Numbers uppercase Enter password Password 9 lowercase letters special characters Numbers uppercase There is no password confirmation Re enter lowercase letters special Password c
5. Integrity Cycle 99 Numbers Enter the integrity function cycle 3 8 SYSTEM Audit Logs This screen shows Audit Logs of the SYSTEM All events of the Security Admin from the initial installation to operation are saved In addition Audit Logs can be viewed by setting the desired time period The Audit Logs are displayed by categorizing Date Type IP Content and Description 36 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual SYSYEM Audit Log Date 2015 03 01 7 2015 03 27 Log Type Wt v IP Log Contents ime Type Contents Ng Fr Environment Settings gt Environment Settings was URL cm enviroment init json 2015 03 27 09 58 54 cess 2 168 7 7 E uc CESC INC ees Ken DO accessed detail SYSTEM ACCESS LOG 2015 03 27 09 58 54 Access 192 168 10 171 SYSTEM gt Audit Log was accessed E MER Fi d Edu e e i ono detail SYSTEM ACCESS LOG o m e URL cm common mng init json 2015 03 27 06 cess 2168 10 17 N gt S was ac x 2015 03 27 09 58 52 Access 192 168 10 171 COMMON gt Common Sector Settings was accessed detail SYSTEM ACCESS LOG 2015 03 27 09 58 52 Login 192 168 10 171 Logged in to Configuration Manager detail Logged in to Configuration Manager URL cm system search auditlog json ka 2 detail Audit Log was searched 2015 03 27 09 53 2 168 9 159 was 1015 03 27 0 15 Search 192 168 9 15 Audit Log was searched date 2015 03 01 00 00 00 201
6. 2015 03 30 18 07 05 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 2 total 6 SPR 65 FIGURE 4 51 ENDPOINT LOGS DLP Mining Engine Runs Mining Engine to collect Discover and Endpoint audit logs as information used on DLP Center at a scheduled time 86 La SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual e DLP Mining Engine Time Type Contents 2015 03 30 15 52 34 Start Task Report data analyzing start 2015 03 30 15 52 34 Terminate Task Discover data analyzing end 2015 03 30 15 52 34 Start Task Endpoint data analyzing start 2015 03 30 15 52 34 Terminate Task Endpoint data analyzing end 2015 03 30 15 52 34 Terminate Task Report data analyzing end 2015 03 30 15 52 34 Start Task Discover data analyzing start 2015 03 30 15 48 52 Start Task Discover data analyzing start 2015 03 30 15 48 52 Terminate Task Report data analyzing end 2015 03 30 15 48 52 Terminate Task Endpoint data analyzing end 2015 03 30 15 48 52 Start Task Endpoint data analyzing start 2015 03 30 15 48 52 Terminate Task Discover data analyzing end 2015 03 30 15 48 52 Start Task Report data analyzing start 2015 03 30 15 48 40 Start Task Discover data analyzing start FIGURE 4 52 DLP MINING ENGINE LOGS 4 6 2 Admin An admin account has the right to operate and manage the DLP Center An admin account is created by the operating system admin when installing the product package In addition an admin
7. Component Port Remark DLP Center Privacy i Server 443 Configuration Manager 1 5 Product Information 1 5 1 First Release Date March 25 2015 1 5 2 Manual Configuration Manual consists of two parts an Admin Manual and a User Manual The Admin Manual includes instructions and descriptions of configuration installation and usage of the server The User Manual includes instructions and descriptions of configuration installation and usage of the agent gt Admin Manual Privacy i V5 0 for DLP HyBoost Admin Manual V1 4 docx gt User Manual Privacy i V5 0 for DLP HyBoost User Manual V1 4 docx 11 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 2 Installation 2 1 Program Requirements To install Privacy i V5 0 for DLP HyBoost product the programs below are required TABLE 2 1 ENVIRONMENTAL CONDITIONS INSTALLER TABLE 2 2 Program Version Remark PostgreSQL 9 3 Database gcc c 44 7 Compiler Java Runtime Environment JRE 1 7 Runtime Environment Recommendations Y When creating a PostgreSQL account it is recommended to create and add a Database Admin account rather than using the Default account 2 2 Installing Product 2 2 1 Installing Privacy i Server Package To run the Privacy i Server Package of Privacy i V5 0 for DLP HyBoost run the Privacy i V5 0 for DLP HyBoost Install BIN installation file X before installing the product PostgreSQL must be ins
8. Privacy i Agent installed Login Retry Attempts Sets number of login retries when account fails Effective Input Field Range 69 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual TABLE 4 11 EFFECTIVE INPUT FIELD RANGE FOR CONNECTIONS Effective Character Failure Message Range Numbers uppercase Enter a setting name 1 120 lowercase letters special characters Numbers special Incorrect IP was inserted on characters Connection Server 1 Try again afte 15 However 0 0 0 0 and checking 255 255 255 255 cannot be entered Server Spaces cannot be entered Connection 1499999 Numbers Interval Login Retry Spaces cannot be entered 1499999 Numbers Interval Login Retry Spaces cannot be entered 1499999 Numbers Times 445 Apply to Targets 4 4 5 1 PCs Discover Prevent and Connections Policies are applied to a department and user If it is a default policy all items in Table 4 12 will be blocked Notice Y H Copy Prevent Policy and Media Control Policy are set at the same time Copy Prevent Policy takes precedence 70 txt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Dept Discover Policy y INot Specified vl qa E Endpoint Policy Online Offline Rz Same as Online Copy Prevent Inot Specified jia mer Specified v Q Print Preven
9. Center is categorized into Dashboard Report Policy Incidents Manage and System as follows see Figure 4 1 Dashboard updates the personal information status and sensitive information dataflow in real time to allow the admin to view information on the main issues 39 het SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual Report provides a variety of reports for each condition through the detected logs in a PC Policy allows for the management of the confidential data inspection policy that is specified to a user PC In addition Incidents provide information on detected confidential data and allowed blocked log in detail In Manage the additional functions for the server and agent can be set Through System the Audit Logs Event and Account Authorization Settings of the DLP Center admin can be viewed DLO center Privacy i V5 0 for DLP HyBoost Password Please change your password periodically Contact your administrator for Login Help FIGURE 4 2 DLP CENTER LOGIN SCREEN When the DLP Center URL address is entered into a web browser a login screen appears as shown in Figure 4 2 When the account information set in Configuration Manager is entered the DLP Center can be successfully logged in Please note that the session becomes locked if the wrong password is entered more than 3 times Effective Input Field Range TABLE 4 1 EFFECTIVE INPUT FIELD RANGE UPON DLP CENTER LOGI
10. FL IL MD M Driver s License Number MT NC Driver s License Number VT w us v4 MX V BR Passport Number Clave Unica de Registro de Poblacion Cadastro de Pessoa Fisica Business Registration Number V KR V KR v4 KR Credit Card Number Health Insurance Number Resident Registration Number gt All Component List Lei SOMANSA V ALL E Mail vV US W US W us V us Wv us V MX V BR M KR W KR V KR Driver s License Number DC HI NY P V US Driver s License Number IA NH vV us Driver s License Number ND v us Driver s License Number WA M us Social Security Number v4 MX Numero de Seguro Social V MX Cadastro Nacional Pessoa Juridica V KR Cellular Phone Number V KR Driver s License Number V KR Passport Number M4 KR gt Select Component List Discovery Severity Top Depts Top Files p Top Patterns b Q Top Users 4 Top Users by Long Term Ret a Q Trend Trend of Patterns FIGURE 4 5 DASHBOARD SETTINGS 43 Apply ALL IP Address Driver s License Number AZ CA KS Driver s License Number ID Driver s License Number OH Medical Record Number Clave de Elector Registro Federal de Contribuyentes Account Number Corporate Registration Number Foreigner Registration Number Phone Number t t t GR GR amp 4 Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 2 Reports Reports run the analy
11. and add delete modify policy pattern among authorized administrators Information Management Log Edit Log Statistic Report Output Log of a PC user in a company who uses a user PC log collected through the agent and History Log Agent that the admin checks Policy Management Policy Management Log Log with pattern policy edited by an admin and an operator Organizational Security Policy Security rules procedures practices guidelines etc which are enforced by the organization Content Various information or content that are stored in the host or provided through a network Can be expressed in a particular file format HWP TXT DOC PDF DOCX PPT PPTX XLS XLSX ZIP etc and can be information itself DLP Center An administration console that an admin operator viewer can log into in order to set confidential data patterns policy rules view reports and register agent users etc 96 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Protocol Communication rules to provide user services such as E mail Messenger File Upload e Download and Web Generally refers to SMTP HTTP HTTPS FTP SFTP SSH TELNET IMAP IRC RDP etc 97 Fei SOMANSA Copyright 2015 SOMANSA All rights reserved
12. Find File Browse Platform Product Architecture Installation Location Please select a platform first v Path Details 3 Action after agent update Please select a platform first Gor FIGURE 3 12 ADD FILE SCREEN Step 4 Completed Update Configuration Configured update information can be viewed 27 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration STEP 1 STEP 2 STEP 3 Enter Update Name Generate Group Add File Configure update information as follows Update Name Agent update Group Name GROUP1 File Name PlAgent exe m Eg FIGURE 3 13 COMPLETED UPDATE CONFIGURATION SCREEN When update configuration is complete the updated information is saved as an xml file When a saved xml file existing xml or xml to be configured needs to be checked it can be compared using the diff button Priva cy i Agent Update Configuration Recent Agent Update Status Agent Update Gi Update Name Agent Update Group Name GROUP1 Sales File Name PlAgent exe Revision FIGURE 3 14 DIFF BUTTON 28 tt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Please copy amp paste documents on the right section to compare FIGURE 3 15 XML CONTENT COMPARISON SCREEN 3 5 2 2 View Agent Update History History of agent update can be viewed Privacy i Agent Update Configuration History Agent Update Hist
13. Login postgres 6O8H396E8 Apply Change on Next Time gt FIGURE 3 4 ENTER DATABASE INFORMATION IN THE CONFIGURATION MANAGER Item Description D Enter Database Information Enter the default database information of the server If a database with a redundancy configuration is used enter the information for an existing configured server where the database is installed Effective Input Field Range TABLE 3 3 EFFECTIVE INPUT FIELD RANGE UPON CONNECTION TO THE DEFAULT DATABASE Effective R Character Failure Message Range Database is Numbers special Enter the IP of the default DB IP characters Database Enter the port of the default DB Port 1465536 Numbers or Login ID 5 256 Enter the login ID of the default DB Numbers letters Enter the password of the default DB Login Password 9 70 special characters 3 3 4 Enter Database Information Set the admin account information for the DLP Center on this screen Specify the admin 18 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual account ID and password of the DLP Center and configure the Access IP with the IP that the admin account has access to In an environment with IP other than the Access IP connection is not possible CX please note that it should be reinstalled or contact a SOMANSA Support Team member if Access IP is lost DLP Center Enter Admin account information DLP Center Please En
14. Manual 4 64 View Privacy i Version Uninstalling Privacy I tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 1 Endpoint DLP Privacy i 1 1 Outline 1 1 1 What is Endpoint DLP Privacy i Endpoint DLP Privacy i is a tool that automatically scans and locates sensitive data stored on a PC which is designated to be deleted or blocked from transferring via USB drives removable storage Media Applications and Printing based on content aware policies 1 2 System Requirements Please refer to Table 1 2 for the correct operating system version on which to install the Server Administration Console and Agent TABLE 1 1 OPERATING SYSTEM IDENTIFICATION Category Operating System Privacy i Server DLP Center CentOS6 4 x64 or higher Kernel 2 6 x or higher Configuration Manager Windows 7 x86 x64 Edition Home Premium Professional Privacy i Agent Ultimate Windows Enterprise Windows 8 x86 x64 Windows 8 Pro x86 x64 Windows 8 Enterprise x86 x64 Below are the hardware requirements to install the Server Administration Console and Agent TABLE 1 2 MINIMUM HARDWARE REQUIREMENTS TO INSTALL PRIVACY I Category Hardware and Software Requirements Privacy i Server CPU Intel Quad Xeon 3 1GHz 1 8 Lei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual DLP Center HDD 500G
15. check 92 i SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual the results Q How do re run the user information input window if the user information was not entered during the agent installation A Restart your PC to re run Q What is the key shaped icon in the lower right corner of my desktop after the final installation A The information window of the agent icon is configured with 6 menus including Running Privacy i View Policy View Event Log Policy Update Module Update and Re login Q How do uninstall the confidential Endpoint DLP Privacy i Agent A A user cannot arbitrarily uninstall the Privacy i Agent If uninstallation is needed please contact a SOMANSA engineer Q Is there a function for preventing the unauthorized access of a server and client A There is an xml based command protocol which is defined by the SOMANSA product through a TCP IP based server service communication port When a service communication port of the unauthorized server connects and transfers a random dummy string this will be ignored by the server service For a client which is used by an admin the account will be automatically locked for a certain period of time when login authentication fails 5 times In addition if the same account is connected to the client simultaneously in two places the prior connection will be automatically shut down with an alert message Q What should do when a serv
16. i Only values between 1MByte to Copy Size iit 1 2000 Numbers 2000MBytes can be entered for the copied imi ile size 4 4 3 3 Media Control Privacy i provides a Control function to allow or block data from moving to external channels such as CD DVDs and floppy disk reading writing external shared folder and network drive connections wireless LAN data networks tethering Wibro serial parallel ports Bluetooth infrared communication IrDA IEEE 1394 Firewire USB removable devices USB Mobile etc Media Control a General E Apply to Targets Name Version Modified Time 1 Policies gt Apply to targets gt PCs applied on Shortcut Action CD DVD Reading Al iv CD DVD Writing Allow v Floppy Reading Floppy Writing Allow v USB Reading Allow v USB Writing Allow v External shared folder and network Allow Wireless LAN Allow v Data Network Allow v Serial Port Allow w Parallel Port Bluetooth Infrared Communication Port IrDA Allow v IEEE 1394 FireWire Port USB Mobile 2 Advanced Audit Log Block only Lei SOMANSA K Allow v FIGURE 4 34 MEDIA CONTROL DETAILS SCREEN 67 Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Policy Item Description Control Settings CDs DVDs floppy disks and USBs can be divided into reading and writing and set to be allowed blocked Reading other specified media is blocked allowe
17. inspection on an agent PC during Inspection by Admin The setting for details is available when this function is set to use e Inspection Task Priority Priority for the running process can be specified e Average CPU utilization allocated to inspection CPU utilization of the running process can be set when running an inspection e Idle Time Check Interval If an idle time set by a user PC has passed the CPU utilization of the process becomes 10096 Inspection speed is improved through resources of the system that are not used during idle time 62 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Popup Message When Terminating Inspection A popup message can be provided to a user PC when Inspection by Admin is completed The message is displayed according to a set pattern or number of files Notification Settings Provides a notification window in the lower right corner when Inspection by Admin is completed The settings for detailed items are available when this function is set to use e Notification for Last Inspection Date and Time Displays the last inspection date e Notification for Starting Scheduled Task Informs an agent PC that inspection has started when a scheduled task starts e Notification for Terminating Scheduled Task Informs an agent PC that inspection was terminated when a scheduled task terminates Effective Input Field Range TABLE 4 7 EFFECTIVE INPU
18. local disk of a host The agent sends a search result to the server and the result is saved on the HDD for log storage The user can run a self diagnosis on the agent to check whether the PC retains any data or not Option 9 According to the Admin Policy the agent controls the external interfaces of a host USB Print CD DVD Bluetooth Wired Wireless LAN etc or checks the data that is transmitted to run the function of data leakage control i Admin runs the following tasks through the Configuration Manager D Connect to the database to save logs and policies Q Use PostgreSQL 9 3 as a database for storing data such as logs and policies And use TCP IP based data communication when the Privacy i Server and DLP Center communicate with the database Set the HDD capacity on the DB logs to prevent losing logs when they become full Register the Privacy i license Admin runs the following tasks through the DLP Center 10 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual D Set the Data Pattern to be based on when the agent searches for data on a user PC Q Create or edit another admin or user account View the searched data and analyze Data Trends in a company Alert each user delete a file Tomcat Server which is operated by the server is configured with 3 components and includes the port as follows TABLE 1 4 SERVICE PORT BY CONFIGURATION MODULE
19. 00 01 arc EE FIGURE 4 12 REPORT PC RESULTS FOR LONG TERM OFFLINE AGENTS Agent Installations Displays user data with the agent installed based on Synchronized User Information The agent installation status in a company can be checked in output Report Agent installation Lekt Dept install Agent Uninstalled Agent User Total User Chart Install Status Company 2 1 3 wm 66 67 somansa 12 1 DN 50 Direct 10 H Ae 100 No Dept User ID User D Computer Name Mac Address Recent Access Time Version Status 1 Company islee Ji Seon Lee 192 168 209 103 WIN UHG3HLNKEDB 00 0C 29 C5 CE 80 2015 03 27 18 35 09 5 0 82 17339 a 2 somansa minustwo Mr KIM 192 168 137 131 WIN 58C3TC185F7 00 0C 29 8B CA F9 2015 03 27 16 07 17 5 0 82 17339 a 3 somansa minustwo MEM 192 168 137 130 WIN 7NBOUM P264 00 0C29 C0 6E 13 2015 03 26 17 13 46 5 0 82 17339 a Showing 1 to 3 of 3 entries FIGURE 4 13 REPORT PC AGENT INSTALLATIONS Top Users by Data Type Top data Categorization 96 and Categorization Content can be checked by a user The rankings of the Number of Patterns and Categorization 96 for Not Categorized Customer Employee Personal Business and Exception can be checked Top Users by Data Type r Total Categorization Not Categorized Customer Employee Private Exception 14 018 0 14 018 H 0 0 0 Chart a Categorization Rank 10 000 3000 8 000 7 000 6 000 5 000 4 000 3 000 2 000 1 000 o
20. 32 E SS E y lt 3 2 E 14 000 ka b s el Geen z E 13 900 a2 Eent CERE poot 24593 24593 150 se 0150 24593 150 m1503 1503 20150 26 Di 2 E Di EJ EJ 3 Date Total Categorization Not Categorized Customer Employee Private Exception a o ox o m o FIGURE 4 16 REPORT PC TREND OF DATA TYPE 50 ist SOMANSA Copyright 2015 SOMANSA All rights reserved Top Patterns by Data Type Privacy v5 0 Admin Manual Total Number of Patterns and Categorization 96 can be viewed by data type The Number of Patterns and Categorization 96 for Not Categorized Customer Employee and Exception can be checked by data type in order Top Patterns by Data Type Toul Categorization Not Categorized Customer Employee Private Exception 14018 096 14 018 H o 0 0 Chat A Categorization Rank 2 500 2 000 1 500 1 000 500 None o US ALL KR US US ALL US ALL KR BR Dri Cre Dri Me E So E Re Ca Rank Name Total Categorization Not Categorized Customer Employee Private Exception US Driver s License Number DC HI NY PA SC TK UT etc 164 ox 2464 o o o o 2 AL Credit Card Number 1776 0 1 76 o o o o 3 KR Credit Card Number 522 os 1 522 o o o o 4 US Drivers License Number VT 057 0 1 057 o o o o 5 US Medical Record Number 085 0 1 085 o o o o 6 ALLIP Address ois o 1015 o o o o 7 374 0 974 o o o o s 302 0 s02 o o o o 3 300 0 soo o o o o 10 350 o 350 o o
21. 5 03 27 23 59 59 npa T jns URL cm system init json 2015 03 27 09 53 cess 216891 STEM gt Log was access d a 2015 03 27 09 53 13 Acce 192 16 59 SYSTEM gt Audit Log was accessed detail SYSTEM ACCESS LOG S E Environment Settings gt Environment Settings was URL cm enviroment initjson 2015 03 27 09 53 ccess 92 168 9 159 Ge 015 09 27 0953 13 Aes 1921689159 accessed detail SYSTEM ACCESS LOG na 27 Aen A ee a URL cm common mng init json 2015 03 27 2 52 C 2 9 MMON gt Si Was accesse e 15 0 09 52 5 Access 192 168 9159 COMMON gt Common Sector Settings was accessed detail SYSTEM ACCESS LOG URL cm system search auditlog json S detail Audit Log was searched 2015 03 27 09 52 2 2 168 9 159 va 15 03 27 09 52 28 Search 192 168 9 15 Audit Log was searched date 2015 03 01 00 00 00 2015 03 27 23 59 59 Sa Environment Settings gt Environment Settings was URL cm enviroment initjson 2015 03 27 09 52 2 ccess 21689159 c L Gebees Ge 1921689159 accessed detail SYSTEM ACCESS LOG FIGURE 3 28 VIEW SYSTEM AUDIT LOGS 3 9 Check Privacy i Version The version of the Configuration Manager can be checked on this screen Click the 3 button at the top right to check the version 37 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration en Manager Privacy i V5 0 for DLP HyBoost Version 2 0 a801 10834 Copyright 2015 SOMANSA Co Ltd all righ
22. A Copyright 2015 SOMANSA All rights reserved 4 1 2 Endpoint Privacy v5 0 Admin Manual Endpoint Dashboard collects inspection information on sensitive data retained in a user PC and provides information Discover has 8 components including E Endpoint Severity E Top Depts E Top Patterns E Top Users E Trend E Top Files and E Top Channels Endpoint Dashboard PATTERNBOO Q Endpoint Severity Normal Substantial Severe Critical Top Files File Name Pattern Datetime El credit Card Number docx 100 2015 04 01 11 08 57 Q Trend Q Top Channels Q Top Depts o Group Name Category Name rie rate MMM El copy Removable Drive 1 100 Data does not exist Q Top Patterns Top Users o ES ALL Credit Card Number 100 Ji seon Lee 1 100 Q Trend of Patterns FIGURE 4 4 DASHBOARD ENDPOINT INFORMATION ist SOMANSA 42 Copyright 2015 SOMANSA All rights reserved 4 1 3 Settings Privacy v5 0 Admin Manual Figure 4 5 is the Preferences screen where Dashboard data information can be configured The options that can be selected in the Settings are Select Component Select Pattern to be used for each component and Renewal Cycle and displays the data applied to the Dashboard according to this set value Dashboard Settings gt Update Cycle 5 Minute gt Patterns Di V ALL Credit Card Number v us v us v us Mus v KR ABA Routing Number Driver s License Number
23. B 2 raid Configuration Manager MEMORY och CPU Intel Core 2 1 6Ghz Privacy i Agent HDD 3 GB Free space MEMORY 1GB X Number of simultaneous than 3000 Users users of Privacy i Agent Recommended to be limited to 3000 Users per server Dispersed operations to multiple servers are required when there are more 1 3 Package Configurations Privacy i V5 0 for DLP HyBoost package is configured as shown in Table 1 4 TABLE 1 3 PRIVACY I PACKAGE CONFIGURATION ITEMS LU Category mm bm Privacy i Server Package Privacy i Agent Package Admin User Manual Software License Certificate Server Application r Agent Application to be installed on a user s computer Admin Manual License Certificate to allow the use of the software t SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 1 4 Privacy i Configuration Diagram nef Privacy i Server NTP Server ps PostgreSQL Web Browser DLP Center web console So Configuration Manager web console Administrator or Security Admin PIUSBSerial employee A pr SSL TSL v1 2 Agent ias Privacy i Agent lt 4 getut rer chic NM FIGURE 1 1 PRIVACY I SYSTEM CONFIGURATION DIAGRAM Privacy i V5 0 for DLP HyBoost runs tasks according to the following procedures Install the agent on a PC to inspect whether it contains sensitive data or not Q The agent periodically searches data on the
24. GURE 4 28 RESULTS OF THE EXPORTED FILE ABOVE AND DETAILS BELOW 57 ist SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual The admin can change the status of Endpoint Incidents and leave a comment to manage in the detail screen Select Parent Report status to forward the details through email x Audit Logs of the block before logging into the agent are stored in the PC After logging into the agent it will be uploaded to the Incidents Endpoint Status and History Comments History Open somansa 2015 03 30 06 03 40 FIGURE 4 29 STATUS CHANGE AND HISTORY REPORT FOR EXPORT BLOCK TABLE 4 4 ITEMS PROVIDED BY ENDPOINT Item Description Set department and user name in the Dept Name User Name department Event Type Whether the file is blocked allowed Policy group Category Activity category of the detected files 58 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 4 Policy Policy Management is categorized into Discover and Endpoint Prevent Discover manages the policy to inspect confidential data retained in the PC and Endpoint manages the policy to control the flow of confidential data in the PC to external channels 4 4 1 Detection Rules Detection Rule for the Discover Prevent Policy can be set To create a Detection Rule File Attribute Policy is required and can be set based on Content Uninspectable and Attribute A
25. N Character Failure Message 5100 Numbers uppercase Enter password Password 9 41 lowercase letters special 40 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Recommendations Y Password should have at least 9 characters and include English letters numbers and special characters 4 1 Dashboard Dashboard is categorized into Discover and Endpoint and provides department or user specific data retained leakage path and data in real time Such data are composed of components and are displayed in order based on the most recent or retained sensitive data It has the advantage of quickly identifying the severity of retained data and retaining status by selecting the component and pattern and setting the department for intensive monitoring 4 1 1 Discover Discover Dashboard collects inspection information on sensitive data retained in a user PC and provides information Discover has 8 components including D Discovery Severity D Top Depts D Top Patterns D Top Users D Trend D Top Files D Trend of Patterns and D Top Users by Long Term Retention PC Discover Dashboard PATTERNDE OGO E o rity Oop Depts 3 Ei A D Normal Substantial Severe Critical Top Patterns O Top Users O Top Users by Long Term Retention BCEE EE Ei seon Lee TP Seon Lee n FIGURE 4 3 DASHBOARD DISCOVER INFORMATION 41 t SOMANS
26. PC Confidential Data Inspection Policy is categorized into a part to create a policy and a part to set a pattern In the part to set a policy a basic pattern and policy name can be set In the part to set a pattern a user defined pattern other than the basic pattern can be added or an expiration date of pattern can be added or modified Click the policy on the list to see Policy Name Modified Time Number of Set Data Patterns at the bottom of the window Please refer to Table 4 6 for a description of each setting ie Policy Item Description TABLE 4 6 CONFIDENTIAL DATA INSPECTION OPTION SETTINGS Category Target Description Inspection Speed Whether to set inspection speed or not Settings Inspection Task Priority High Medium Low Inspection Speed Average CPU Allocation Settings 96 CPU resource settings when inspecting Oo Idle Time Check Interval Uses maximum CPU if there is no mouse seconds or keyboard input 60 Fei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Actions When Popup Message At the end of the authorized person the receives a popup inspection MU message Inspection is Sets the number of detected patterns Complete Message Exposure files with the popup message setting Standard option PE Uses a notification message when Automatic Notification mE terminating the final inspection
27. Privacy v 5 0 HyBoost Admin Manual Privacy V5 0 for DLP HyBoost Admin Manual V 1 4 tf SOMANSA Copyright 2015 Somansa All rights reserved Privacy v5 0 Admin Manual Introduction The contents of this Manual may be changed without prior notice to improve products and performance The example companies organizations products people and events depicted herein are fictitious Any part of this Manual shall not be replicated saved in a search system introduced or transferred in any form or by any means electronic mechanical copy machine disk copy or otherwise or for any purpose without the express approval of Somansa Co Ltd Somansa Co Ltd holds patents trademark rights copyrights or other intellectual property rights covering subject matter in this Manual Other than the rights provided to you by Somansa Co Ltd in accordance with any written license agreement the provisions of this Manual shall not provide you any license regarding the patents trademark rights copyrights or other intellectual property rights 01997 2015 Somansa Co Ltd All rights reserved Privacy i Somansa is a registered trademark or trademark of Somansa Co Ltd Other products and company names mentioned herein may be trademarks of their respective owners gt Manufacturer Supplier Name SOMANSA Co Ltd gt Address 3003 N First St Suite 301 San Jose California 95134 Website Address http www somansatech c
28. Rank User Dept Total Categorization Not Categorized Customer Employee Private Exception 1 Ji Seon Lee Company 9 885 0 9 885 0 o o 0 2 U MrKM somansa 4133 0 4133 o H o 0 Showing 1 to 2 of 2 entries 141 FIGURE 4 14 REPORT PC TOP USERS BY DATA TYPE 49 i SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Top Depts by Data Type Top data Categorization and Categorization Content can be checked by a Dept The rankings of the Number of Patterns and Categorization 96 for Not Categorized Customer Employee Personal and Exception can be checked Top Depts by Data Type Total Categorization Not Categorized Customer Employee Private Exception 13 964 0 13 964 0 0 0 0 Chart a 10000 9000 8 000 7 000 6000 5000 4000 3000 2000 1000 o Direct somansa Rank Dept Total Categorization Not Categorized Customer Employee Private Exception 1 Direct 9 831 0 9 831 0 o 0 0 2 somansa 4 133 0 4 133 0 0 0 0 Showing 1 to 2 of 2 entries HEUS 3 FIGURE 4 15 REPORT PC TOP GROUPS BY DATA TYPE Trend of Data Type Variation by date for the data pattern and file can be checked Trends by pattern and file can be viewed in graphs and tables Trend of Data Type aw Leien Lan Woes zem Ta Week SESCH canon 15555 SS Es a ita Type a sny ee m Tranan m Taas o p m 14018 0 14 018 o 0 H o CA Pattern Trend File Trend 16 000 na 15 900
29. SampleDataMasking number of patterns 1 Include sample data Masking 2 Include sample data Plaintext Effective Input Field Range TABLE 3 7 EFFECTIVE INPUT FIELD RANGE FOR ADVANCED OPTIONS Effective Character Failure Message Range Option vu 32 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 7 Preferences 3 7 1 Configuration Manager Administrator Account Information Password for the Security Admin can be changed To change the password enter the current password a new password and new password confirmation We recommend changing passwords regularly for security purposes Configuration Manager Administrator Account Information Password New Password Re enter Password ES FIGURE 3 21 CONFIGURATION MANAGER ADMINISTRATOR ACCOUNT INFORMATION Effective Input Field Range TABLE 3 8 EFFECTIVE INPUT FIELD RANGE FOR CONTROL PANEL ADMIN ACCOUNT INFORMATION Effective Character Failure Message Numbers uppercase Enter the password for the current Password lowercase letters special admin account characters Numbers uppercase Enter the new password for the New Password lowercase letters special admin account characters Numbers uppercase Enter the new password for the Re enter Password lowercase letters special admin account again characters Recommendations Y Password should have at least 9 characters and include English letters number
30. System Logs Endpoint Records the audit logs for login and logout and policy distribution of Privacy i Agent connected to the Privacy i Server In addition logs for integrity success failure of Privacy i Agent can be viewed 85 is SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual Date Last Month Last Week Yesterday EH This Week This Month Custom 2015 03 30 M 2015 03 30 Apply Time User IP Contents 2015 03 30 18 33 13 jslee 192 168 209 104 Endpoint Policy Deployment jslee updated 1 total 5 SPR 73 2015 03 30 18 32 09 jslee 192 168 209 103 Endpoint Policy Deployment lee updated 1 total 6 SPR 73 2015 03 30 18 27 25 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 1 total 6 SPR 72 2015 03 30 18 21 06 jslee 192 168 209 103 Endpoint Policy Deployment lee updated 1 total 6 SPR 71 2015 03 30 18 19 55 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 1 total 6 SPR 70 2015 03 30 18 18 47 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 1 total 6 SPR 69 2015 03 30 18 18 19 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 1 total 6 SPR 68 2015 03 30 18 13 50 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 1 total 6 SPR 67 2015 03 30 18 12 09 jslee 192 168 209 103 Endpoint Policy Deployment jslee updated 2 total 6 SPR 66
31. T FIELD RANGE FOR POLICY PC Effective 5 Character Failure Message Range Numbers uppercase Enter policy name Name 1 120 lowercase letters special characters Average CPU Only numbers between 10 and 100 Utilization can be entered 0 100 Numbers Allocated to Inspection Idle Time Check A number less than 1 cannot be 0 999 Numbers Interval entered 443 Endpoint In the Endpoint a policy can be defined for controlling channels that can communicate externally such as removable storage devices communication media printers application programs networks etc A policy that logs or blocks when a user transfers a confidential file 63 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual externally can be specified A leak of important company information can be prevented in advance 44 3 1 Copy Prevent A policy can be set for removable storage devices including USB drives The other data leakage control policies below are configured with the same process Since a wide range of USBs are used in a company it is often difficult to manually apply and allow or block policy for available USB drive restriction Copy Prevent EG General Apply to Targets Name Version Modified Time 1 Policies gt Apply to targets gt PCs applied on Shortcut Target All Removable Storages Data Inspection Off On Action All removal storage All Files Control A
32. ailure Message Range Numbers uppercase Enter password Password 9 41 lowercase letters special characters 3 3 2 Setting Up a New Password After entering a password the Change Password screen will appear Figure 3 3 Set up a new password for the Security Admin in the Configuration Manager 16 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Change Password Please change CM password New Password 99690960060 Re enter New 99666980506 Password FIGURE 3 3 SETTING UP A NEW PASSWORD IN THE CONFIGURATION MANAGER SCREEN Effective Input Field Range TABLE 3 2 EFFECTIVE INPUT FIELD RANGE UPON LOGIN Effective Character Failure Message Range Numbers uppercase Enter new password New Password 9 41 lowercase letters special characters Numbers uppercase Enter password again Confirm a New lowercase letters special Password characters Recommendations Y Password should have at least 9 characters and include English letters numbers and special characters 3 3 8 Enter Database Information Enter database information for Privacy i V5 0 for DLP on this screen Enter the database accessible IP Port Account 17 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Enter Database Information Use double configuration database Enter database information for solution using Database 192 168 209 140 5432
33. anager Privacy i Server Database Log Database Management Product Schema Log Database Information Connection Settings Lose Server Management Privacy i Server Control Criteria Advanced Option Advanced Option Settings Option Details DLP Center Database Management Privacy i Tue Privacy i Agent Update Server Management DLP Center Server Control Agent Update Configuration Agent Update History Advanced Option Advanced Option Settings Option Details FIGURE 3 1 CONFIGURATION MANAGER DIAGRAM The Configuration Manager is set up as shown in Figure 3 1 The Configuration Manager provides Common Area Settings Privacy i DLP Center Preferences etc 3 3 Initial Connection Settings 3 3 1 Enter Password upon Initial Connection When logged in to Configuration Manager the login page will appear as below Figure 3 2 The admin account in Configuration Manager is Security Admin and only one account is available Therefore do not enter a separate ID Enter the default password upon initial connection and log in with the Security Admin 15 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration Manager Privacy i V5 0 for DLP HyBoost Welcome Password Do you login first FIGURE 3 2 CONFIGURATION MANAGER LOGIN SCREEN Effective Input Field Range TABLE 3 1 EFFECTIVE INPUT FIELD RANGE UPON LOGIN Effective Character F
34. can create and delete an Operator or Viewer Account according to the access department and view permissions However an admin account created during package installation cannot be deleted Table 4 21 provides a description of the account permission of DLP Center TABLE 4 21 INTEGRATED ACCOUNT RIGHTS Number of Account Account All rights Operator and viewer account Admin management Authorized access menu and log view in a Operator department Limited access menu and log view in a Viewer department 87 i SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual ES General Admin ID Re enter Password Email Password f Mobile Details Start Date Expiration Date Management Dept a Company Select Access IP On Role Select m Permissions Access Authority FIGURE 4 53 ADMIN REGISTRATION SCREEN Effective Input Field Range TABLE 4 22 EFFECTIVE INPUT FIELD RANGE WHEN REGISTERING ADMIN Effective e Character Failure Message Range An admin ID should have at least 5 Admin ID characters Numbers uppercase Enter password Password 9 35 lowercase letters special characters English letters Numbers uppercase Re enter lowercase letters special Password characters Numbers uppercase 1 200 lowercase letters special characters 88 tf SOMANSA Copyright 2015 SOMANSA A
35. ction Inspection by Admin Q How can check a confidential data file detected on my PC A You can check depending on if you are running a Periodical Inspection Inspection by Admin or Inspection by User when you check confidential data extracted logs Please see the relevant pages for more information 91 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Q How do stop a Periodical Inspection Inspection by Admin A You cannot stop a Periodical Inspection Inspection by Admin in progress However you can stop an inspection with the Stop Inspection button if it is being run by a user Q How do view which confidential data content exists in an extracted confidential data file A You can view confidential data details through the View File Details menu which appears when you select the file on the View Log List and right click Q need a description of the function buttons on the View Log List screen after inspection is completed A The functions include Select All Move Delete Statistics and Reports Please see the relevant pages for detailed instructions Q What should do if a confidential data file is detected A Q For a file needed for business specify it as General Business in the confidential data categorization menu and make sure to delete it when the task is completed For a file related to personal life specify it as Private Personal For a detectio
36. d Target to Notification L Group Leader or Admin Group Privacy officer Chief Privacy Officer Custom Figure 4 44 Target to Notification Screen 80 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Schedule Notification cycle can be set once daily weekly or monthly Schedule Start Date 2015 03 30 m 19 v 11 5 Cycle Once FIGURE 4 45 NOTIFICATION CYCLE SETTINGS SCREEN Mail Settings Mail subject and body can be entered E Mail Settings Mail Subject Mail Contents x Figure 4 46 Mail Settings Screen 454 Users A user can be added modified and deleted Number of agents retained and connection status can be viewed through the agent column on the list ZC lee ds2shg 2015 03 26 O o O 3 JiSeonLee jslee 2015 03 26 o im m Ip A Mr KIM minustwo 2015 03 26 om jm m m 192 168 10 157 somansa Showing 1 to 4 of 4 entries 1 Figure 4 47 User Account Management Screen User Management User Management shows the agent information on a user PC that is registered to User Information For user information functions including adding deleting a user and changing a password are provided 81 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual General User User ID Password Re enter Password Dept Company Select Start Date 2015 03 30 End Date 2016 03 30
37. d i Effective Input Field Range TABLE 4 10 EFFECTIVE INPUT FIELD RANGE FOR MEDIA Effective Character Failure Message Range Numbers uppercase Enter a policy name Name 1 120 lowercase letters special characters 44 3 4 Policy Application Time A function to set a time frame to apply online or offline policies 444 Connections Configures connection settings for the server where an agent can connect 68 t SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual amp General amp Apply to Targets Name Version Modified Time 1 Policies gt Apply to targets gt PCs applied on Shortcut Server 1 Server IP Port Login Server 443 Data Server 443 E serer2 0f p sewer3 0ff p Update Server Server IP Port Update Server 443 Interval and Times Category Contents Server Connection Interval 600 sec Login Retry Interval 600 sec Login Retry Times 1 times FIGURE 4 35 PC CONNECTION SETTINGS SCREEN ie Policy Item Description Connection Server 1 Configures connection server for Privacy i Agent e Connection Server 2 3 Can be set the same way as Connection Server 1 when selected to use This setting item is required for Dual or Triple Redundancy Settings Q Server Connection Interval Sets an interval time to connect to the server Login Retry Interval Sets a re login time if there is no response from a PC with
38. dification is absolutely necessary since default values are set Please contact the Support Team for more details 3 5 1 3 License UlD License expiration date number of users etc are displayed see Receive License Issuance Place the License received from the SOMANSA in the somansa common license folder to register the license as above If the valid date of the License is expired or a License from another server is copied main functions such as Data Pattern Update will not work See License Issuance 23 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Priva cy i Server Control Advanced License System Registration Information UID wyugebO Product Privacy i V5 0 for DLP HyBoost Full License Customer Name somansa Expired Date 2016 03 23 Client Count File Version 5 0 9600 FIGURE 3 9 PRIVACY I LICENSE SCREEN 24 t SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 5 Privacy i Agent Update 3 5 2 1 Agent Update Configuration Step 1 Enter Update Name Enter a name for the update process task Example Agent Update 2015 03 Configuration STEP 2 STEP 3 STEP 4 Generate Group Add File Complete Update Configuration Enter update name Meaningful update name is useful when you manage update history Update Name Agent Update 2015 03 E FIGURE 3 10 ENTER UPDATE NAME SCREEN Step 2 Generate Group Generate an update
39. e Key will be sent by E mail STEP 2 Copy the two License files privacyi license privacyi license serial sent by E mail to the somansa common license folder STEP 3 The Registered License can be checked in the Configuration Manager Privacy i License tab 13 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual License Issuance When all of the steps above are completed the license application is complete The License will be sent by E mail and 2 files including privacyi license and privacyi license serial will be attached Copy the attached files to the Program Installation Folder WSomansaFrameworkWCommon 2 folder to control the Control Panel 2 3 2 What happens if the license is not renewed If a product license agreement has expired and not renewed the product will not update In addition the latest security patch files cannot be received and server operation cannot be controlled when Privacy i Server is down Therefore please renew a license when it has expired 14 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 Configuration Manager 3 1 Running Configuration Manager Run the Configuration Manager through a web browser The first Security Admin password is provided and should be changed after login If the password is forgotten please contact the SOMANSA Support Team 3 2 Configuration Manager Setup Configuration M
40. ed x 14 Privacy v5 0 Admin Manual 3 3 2 Setting Up a New Password eterne teen ttt titt nntcte 16 3 3 3 Enter Database Information EEN 17 3 3 4 Enter Database Information EEN 18 3 4 KEE 20 3 4 1 Common Area Settings ENEE 20 3 4 1 1 Default Database Connection Settings EEN 20 3 4 1 2 Product Schema Management 21 3 5 ge Siea r e eee eee MM M E 23 3 5 1 Ne EE 23 3 5 1 1 Server Management 23 3 5 1 2 Advanced Option 23 a a E SE E 23 3 5 2 Privacy i Agent Update 25 3 5 2 1 Agent Update Configuration EEN 25 3 5 2 2 View Agent Update History ecce inesi os 29 3 6 DEPT Canter BELONGS EN 30 3 6 1 Server ManageMe nt ccsssccssssccsssscessscssssseessssecssuseessssecessseessuseessussessnuteessnecssasecssaseeseaseessnreessnsecs 30 3 6 2 Advanced Option 31 3 7 AA AA 33 3 7 1 Configuration Manager Administrator Account Information uu 33 3l Sesso MEss a SaR SRS 34 3 7 3 Time Synchronization EEN 34 C MENU DR 35 4 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 7 5 PAC COSS e 35 3 7 6 Configuration Manager Initialization ENEE 35 3 7 7 Integrity eg e 36 3 8 SYSTEM Audit LOgS aariaid aarre ase edan EE AU EE EST 36 3 9 Check Privacy i Version MM T siaa 37 d DIRE Centena ER 39 4 1 Kul esed coco PEU DIDI RN KA 41 4 1 1 LEE AA AA 41 4 1 2 aede 42 4 1 3 Kl e sec
41. enerated for a user by a user that does not affect product operation Identity Identifies an authorized user System Administrator An authorized admin who is in charge of product operation and preferences in the control panel 94 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual System Log An updated log on policies and patterns Administrator Has the right to edit policy in the DLP Center Agent Is installed on a user PC and operates only in the Windows Linux environment Runs a scan when an agent user inspects confidential data on their own PC or when an administrator forcefully scans confidential data on a user PC from the server DBMS A DB server where all audit logs are stored PostgreSQL is selected and used for this product External Interface A general term for various ports that can leak data stored in the host It includes USB IDE SATA e SATA IEEE1394 PCMCIA LAN WLAN Bluetooth Serial Parallel Port Infrared port etc Threat Agent An unauthorized user admin or external IT entity that poses threats such as illegal access modifying and deleting assets Authorized Administrator Refers to the System Administrator Admin Operator and Viewer 95 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Authentication Data Information used to verify the identity of a user Operator A person who can view all audit data
42. er s operating system and hardware fails other server functions fail and server recovery is needed due to a user error A Report the failure and request maintenance support at the SOMANSA Help Desk After receiving a remote or on site inspection please take action such as patching the module updating or re installing the product depending on the inspection results of the engineer Q Do you provide a function to check an event regarding product error or the cause of an error A If an error such as abnormal termination of service and program termination occurs please check the event logs of your operating system For the detailed inspection for an error we recommend you to receive an inspection through the SOMANSA Help Desk Request and Inquiries for On Line Off Line support 93 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 7 Definition of Terms Account Management Log Added modified and deleted logs of an admin account and identified and approved logs of an authorized admin Viewer Has permission to audit logs for modified history of the DLP Center restricted access right Audit Security Log Audit logs stored in the database while running security functions in the DLP Center Refers to Information Management Log Policy Management Log Account Management Log System Log etc User Refers to anyone who uses a PC with the agent installed in a company User Data Data g
43. group One or more group s must be specified and can be categorized according to the characteristics of the module In addition the target to be applied to the group can be specified as a whole or selectively based on the user information 25 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration STEP 1 STEP 3 STEP 4 Enter Update Name Add File Complete Update Configuration Generate a group which Agent Update will be applied to Group Name Target GROUP1 all Group Name GROUP2 Target All Dept Specify Dept E3ESES ES KO FIGURE 3 11 GROUP GENERATION SCREEN Step 3 Add File Add a file to update On a platform OS type and architecture name x86 x64 can be selected Installation location can be selected from the Privacy i Agent installation folder Privacy i Data folder Windows folder and System32 folder and a detailed path can be entered Omit before and after the entered path No Action Create Service Run Register Registry and Restart Privacy i Agent can be selected for the following action 26 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration STEP 1 STEP 2 STEP 4 Enter Update Name Generate Group Complete Update Configuration Group Name c amp OUP1 v File Name File Size Byte s Last Update Time Revision cm piinterface xml 10 266 20150316 163526 14407 File Update Settings
44. h exported the most confidential data files in graphs and lists Trends 3 Dat Daily Monthly Yearly ThisWeek v 2015 03 29 sl 20150401 Ss Action Allow Block Pattern Select al Apr Reset Pattern File Severity Low Severity Medium Severity High Severity 200 2 0 0 2 Ex EN Chart a Pattern Trend File Trend 210 2 10 208 206 2 05 204 202 2 00 200 198 1 95 196 194 1 90 192 T T 2015 03 30 2015 03 30 Date Pattern File Severity Low Severity Medium Severity High Severity 2015 03 30 200 2 0 o 2 Showing 1 to 1 of 1 entries FIGURE 4 21 TRENDS Top Channels Displays the top channels of patterns files and severity 96 for allowed blocked leakage paths FIGURE 4 22 TOP CHANNELS 53 ist SOMANSA Copyright 2015 SOMANSA All rights reserved Top Patterns Privacy V5 0 Admin Manual Displays the allowed blocked data based on patterns ET E Date Action wen Block son by stem Ofle amen e Seve Low See Medium See NG Sensi 200 2 H o 2 aaa chart 4 Severity Rank 120 100 80 LI 40 20 o 1 Credit Care ALL Ewei lumber Name tern Fle Severity Low Severny Medium Severity High Severity ALL Credit Card Number aM ALL E Mail EH ist SOMANSA FIGURE 4 23 TOP PATTERNS 54 Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual 4 3 Incidents 4 3 1 Discover 4 3 1 1 PCs Files by Last Inspection
45. haracters Numbers uppercase Employee E lowercase letters special Number characters Numbers uppercase Email 1 lowercase letters special characters Ts 20 35 35 20 50 15 Recommendations Y Password should have at least 9 characters and include English letters numbers and special characters Policy Management Discover Inspection Policy and Endpoint DLP Policy generated in policy can be specified by department or user Dept Management Dept Management shows departments registered in User Information For user information 83 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual functions to add delete and move department are provided Dept Management Move Add Modify Delete Close Dept Company cmm m somansa FIGURE 4 49 DEPT MANAGEMENT Effective Input Field Range TABLE 4 20 EFFECTIVE INPUT FIELD RANGE WHEN REGISTERING USERS DEPT Effective Character Failure Message Range Numbers uppercase Enter a department name Dept 1 100 lowercase letters special characters Numbers uppercase Find 1 100 lowercase letters special characters 84 txt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual 4 6 System 4 6 1 Logs Audit Logs For all activities of the admin Information Management Logs Information Trace Logs Policy Management Logs and Account Management Logs can be v
46. hecks data Categorization 96 and Categorization Content in order by a Dept Checks variation by date for data patterns and files Patterns and Checks Total Number of Categorization 96 by data type Checks the data categorization ranking by an agent 44 Copyright 2015 SOMANSA All rights reserved Top Users Top Depts Endpoint Trends Top Channels Top Patterns Privacy v5 0 Admin Manual Displays data by top users who have the most exports blocks in order Displays data by top departments that have the most exports blocks Displays trend results of exported blocked logs based on the selected department user Displays data by top channels which have the most exports blocks Displays data by top patterns which have the most exports blocks 45 Lei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 2 1 Discovery 4 2 1 1 PC By using the results of retained confidential data inspection on a PC Reports include Top Users Top Depts Trend Top Users by Long Term Retention and Top Patterns based on the detected number of confidential data patterns or files for a specific department user and Long Term Offline Agents Agent Distribution for the agent status Top Users Displays the top users who retain the most confidential data files detected from a user PC in order and the number of detections The list of top users wh
47. ial security numbers account numbers credit card numbers cell phone numbers Intellectual Property other data based on specific keywords files etc can be detected Q From which file types can an endpoint DLP solution detect confidential data A It can detect confidential data in MS Office HWP pdf txt html rtf csv other text formats Q What are the criteria of a confidential data document A Any information that is classified as sensitive company data or can identify individuals including customers and employees all documents that contain account numbers credit card numbers social security numbers and cell phone numbers are considered confidential data documents Q How can search confidential data in a PC using an endpoint DLP A Click the Privacy i icon confidential data detection solution in desktop Q What is Periodical Inspection Inspection by Admin A A scheduled activity to check whether employees retain any confidential data that must be deleted A user can view the results through a notification message such as Start Inspection Running Inspection Completed Q How can postpone an inspection when running Periodical Inspection Inspection by Admin A Select the Run Later button in the notification window However a request popup window will appear periodically Q Endpoint DLP is not running A It only runs when it is connected to the company network or is not currently running Periodical Inspe
48. iewed An Audit Trail is provided through the log Date Last Month Last Week Yesterday ZEN This week This Month Custom 2015 03 30 2015 0330 amp Select e Reset Time Type User IP Contents 2015 03 30 19 18 58 Search somansa 192 168 10 151 Search from System gt Logs gt Audit Log 2015 03 30 19 18 28 Search somansa 192 168 10 151 Search from Manage gt Users 2015 03 30 19 17 03 Search somansa 192 168 10 151 Search from Manage gt Users 2015 03 30 19 16 03 Search somansa 192 168 10 151 Search from Manage gt Users 2015 03 30 19 16 02 Modify somansa 192 168 10 151 Modify from Manage gt Users 2015 03 30 19 16 02 Search somansa 192 168 10 151 Search from Manage gt Users 2015 03 30 19 15 43 Search somansa 192 168 10 151 Search from Manage Users 2015 03 30 19 15 10 Search somansa 192 168 10 151 Search from Manage Users 2015 03 30 19 11 30 Search somansa 192 168 10 151 Search from Reports Discover PCs Top Users 2015 03 30 19 11 28 Search somansa 192 168 10 151 Search from Manage gt Alerts Notifications gt Reports 2015 03 30 19 11 28 Search somansa 192 168 10 151 Search from Manage gt Alerts Notifications gt Reports 2015 03 30 19 11 28 Search somansa 192 168 10 151 Search from Manage gt Alerts Notifications gt Reports 2015 03 30 19 11 25 Search somansa 192 168 10 151 Search from Manage gt Alerts Notifications gt Reports FIGURE 4 50 AUDIT LOGS 4 6 1 1
49. in the 21 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual database entered in the Default Database Connection Settings When Create Schema is clicked a notification window that displays If such information exists in the database it will be removed Do you want to continue is generated and the initial data required for operating the selected Schema is created Please note that the database information will be initialized if Create Schema is continued while operating solutions Product Schema Managment C Privacy i Server Schema Generation C DLP Center FIGURE 3 7 PRODUCT SCHEMA MANAGEMENT SCREEN 22 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 5 Privacy i Settings Privacy i Running Status Log Settings License and Advanced Options are provided 3 5 1 Privacy i Server 3 5 1 1 Server Management The status of the Privacy i Server and its operation can be set As shown in Figure 3 13 Restart Start and Stop functions for the Privacy i Server are provided Privacy i server Control Privacy i Server Control Privacy i Server ile Refresh Privacy i Job Service Igiet Refresh FIGURE 3 8 PRIVACY I SERVER CONTROL 3 5 12 Advanced Options Advanced Options can lead to errors in Privacy i operation when used incorrectly by a non experienced user We recommend not modifying the Advanced Options unless mo
50. ll rights reserved Privacy v5 0 Admin Manual Recommendations Y The password must be created with more than 9 characters including English letters numbers and special characters 4 6 3 Tools 4 6 3 1 Uninstall Password Generator Enter the serial number sent by an agent to generate the agent Uninstallation Password Uninstall Password Generator Serial Number 3 Expiration Date 2015 03 30 Iv Use Expiration Date Unistall Password FIGURE 4 54 UNINSTALL PASSWORD GENERATOR 4 6 4 View Privacy i Version This screen shows the version of the DLP Center Click the button at the top right to check the version Info v DL P center Privacy i V5 1 for DLP HyBoost version 2 0 a2821 10798 Copyright 2015 SOMANSA Co Ltd all rights reserved FIGURE 4 55 VIEW DLP CENTER VERSION 89 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 5 Uninstalling Privacy i If Privacy i V5 0 HyBoost needs to be uninstalled please contact SOMANSA Support Team 90 Fei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 6 FAQ Q What is an endpoint DLP solution A A tool that automatically detects sensitive data on a PC which is designated to be blocked or deleted according to current regulatory compliance and internal security policies Q What types of information can an endpoint DLP solution detect A Sensitive data including soc
51. llow Y Audit Log Save M File Save M Advanced Notification Always v File Size Limit 500 MB 1 2 000 FIGURE 4 32 COPY PREVENT POLICY DETAILS SCREEN ie Policy Item Description Target All Removable Storage Devices can be selected and the policy for the all removable storage device is registered Q Data Inspection Off or On can be selected When On is selected the policy 64 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual registered in Detection Rules can be selected and the policy is set according to the specified rule Action All Removable Storage Devices can be set to allow block In addition Save Do Not Save can be set for a copied file when allowed Notification Message No Notification Always Notify and Notify When Blocked can be selected Notification on Privacy i Agent will be shown when it s set Copy Size Limit Only a copy of the set value can be saved when saving a copy Effective Input Field Range TABLE 4 8 EFFECTIVE INPUT FIELD RANGE WHEN REGISTERING REMOVABLE STORAGE DEVICES Effective Character Failure Message Range Numbers uppercase Enter a policy name Name 1 120 lowercase letters special characters Only values between 1MByte to Copy Size Unit 1 2000 Numbers 2000Mbytes can be entered for the copied imi ile size 65 txt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Ad
52. llowed only in IP set Configuration Manager 192 168 9 151 ES Access IP FIGURE 3 25 ACCESS IP Effective Input Field Range TABLE 3 11 EFFECTIVE INPUT FIELD RANGE FOR ACCESS IP SETTINGS Effective F Character Failure Message Range Control Panel Enter the Control Panel Access IP 15 Numbers special characters Access IP 3 7 6 Configuration Manager Initialization Initializes Control Panel settings Initializes the product setting information and returns to status after installation Data and setting value that are stored in the database will be preserved 35 tt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Configuration Manager Initialization Data of Configuration Manager will be initialized E Data and Setting Value stored in Database will be preserved FIGURE 3 26 CONFIGUTAION MANAGER INITIALIZATION 3 7 7 Integrity Check Sets the Integrity function of the product The Integrity Inspection provides two methods which include running a scheduled task and a Security Admin clicking the Run button This function is not activated by default but can be used after checking Integrity Cycle Integrity Check Integrity check now Run Integrity check every 60 minutes Apply FIGURE 3 27 INTEGRITY CHECK i Effective Input Field Range TABLE 3 12 EFFECTIVE INPUT FIELD RANGE FOR INTEGRITY FUNCTION SETTINGS Effective Character Failure Message Range
53. min Manual 4 4 3 2 Print Prevent Sets a policy for printing documents Other data leakage control policies below are configured with the same process e Print Prevent EG General Apply to Targets Name Version Modified Time 1 Policies 3 Apply to targets 3 PCs applied on Shortcut Data Inspection Off On Action All Files Control Allow v Audit Log Save M File Save M Advanced Notification Always el File Size Limit 1 2000MB 500 MB 172 000 FIGURE 4 33 PRINT PREVENT DETAILS SCREEN Policy Item Description Data Inspection Off or On can be selected When On is selected the policy registered in Detection Rules can be selected and the policy is set by the specified rule Action All files that are printed can be set to allow block In addition Save Do Not Save can be set for a copied file when allowed Notification Message No Notification Always Notify and Notify When Blocked can be selected Notification will be shown on Privacy i Agent when it is set Copy Size Limit Only a copy of a set value can be saved when saving a copy 66 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Effective Input Field Range TABLE 4 9 EFFECTIVE INPUT FIELD RANGE FOR PRINT PREVENT Effective 5 Character Failure Message Range Numbers uppercase Enter a policy name Name 1 120 lowercase letters special characters
54. mmon database shows input information in the 3 3 3 Enter Database Information during initial installation If the Privacy i V5 0 for DLP HyBoost database information is modified it updates the information through Default Database Connection Settings 20 Fei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual COMMON settings Database Connection Settings Database 192 168 209 140 5432 Login postgres E Product Schema Managment Privacy i Server DLP Center FIGURE 3 6 COMMON AREA SETTINGS SCREEN After entering common database connection information the session status can be checked through Check Database Connection If the connection failure window appears please check if the account information is entered incorrectly or the service status of the database Effective Input Field Range TABLE 3 5 EFFECTIVE INPUT FIELD RANGE UPON THE DEFAULT DATABASE CONNECTION Effective Character Failure Message Range Numbers special Enter the IP of the DB Database IP characters Database Port 1 65536 Enter the port of the DB Login ID 5 256 Enter the login ID f Numbers letters Enter the password of the DB Login Password special characters 341 2 Product Schema Management After the initial preference task a task must be run through Create Schema This creates a database that is needed to run Privacy i Server DLP Center and the Schema is created
55. n error that does not contain confidential data specify it as Exception File Other files must be completely deleted When storing a confidential data file in a PC you must encrypt the file and completely delete files specified for business after the task is completed Q How do completely delete a detected file A Select the file to delete in the View Log List and click the Delete button Q opened the detected confidential data file but there are no confidential data A This may occur when detection information is hidden chart graph is linked OLE Object Linking and Embedding or detection error is matched to the confidential data pattern Please see the relevant pages for more information Q What does Other Detection mean in the View Log after inspection is completed A Other Detection means it is unable to check content due to an encrypted file through a self encrypting function ex MS Office ZIP password settings etc Q I ran Periodical Inspection Inspection by Admin What happens to the results A Periodical Inspection Inspection by Admin results can be checked by a user on a PC In addition the summary statistics by team user number of detections are automatically sent to an administrator by E mail An administrator needs to check the detected data content and continuously delete unnecessary confidential data XX When running an inspection by a user an E mail will not be sent and only the user can
56. ne None 2015 03 27 10 32 41 Agent information D File information Ef Pattern Information UserID Ji Seon Lee Fie Name meetuningoverrides xml US ABA Routing Number 2 682 Contents Dept Company Girst No Apgilcsbie US Driver s License Number DC HI NY PA SC TX UT ec 2873 Cantera Computer Name WIN UHGSHLAKEDR E Zensur 310 3856 auk puta SES E US Drivers License Number VT 193 Contents File Size 293 118 bytes Us Medical Record Number 193 Contents mg Time 2009 07 14 07 26 13 Seene 293 DEA OCOSIS US Passport Number 2 682 Contents Inspected Time 2015 03 27 10 32 41 Submited Time 2015 03 27 10 32 41 Identical Fie IFle User lesser H gt E Company li Seon Lee 192 168 209 103 DEET 726 o None None 2015 03 27 10 32 41 E comoany ii Seon tee 192 162 209 103 PGMNOSS XML 476 o None None 2015 03 27 10 32 41 Company Seon Lee 192 168 209 103 PGLBLOETXML 2834 o None None 2015 03 27 10 32 41 Brongen Seon Lee 92 168 209 103 PGMNOB XML 2830 o None None 20150327 10 32 41 Dengen Seon Lee 192 168 209 103 private Gara emi 2 178 o None None 2015 03 27 10 32 41 Company Seon Lee 192 168 209 103 private Gata ami o None None 20150227 11 34 38 FIGURE 4 25 FILE INSPECTION HISTORY SCREEN 55 re SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual TABLE 4 3 ITEMS PROVIDED BY DISCOVER Set department and user name in th Dept Name User Name department Agent IP User IP File Name Detected file name Number
57. ns for operating DLP Center can be selected DLP Center server Advanced Advanced Option Settings This can cause DLP Center action errors if used incorrectly by non professionals We recommend that you do not modify the advanced options unless it is necessary because the default value is set E Option Option Name Val Description AdminE Mail DataTableLimitCnt 100 ExportSampleDataAndMasking 0 Locale en MailID MailPort MailPWD MailServer SiteApprovalReugestType VisualChart 0 Option Details Option Name Option Value Description FIGURE 3 20 DLP CENTER ADVANCED OPTIONS The options are provided by the DLP Center However the advanced functions can lead to errors 31 tt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual in the DLP Center operation when used incorrectly by a non experienced user We recommend not modifying Advanced Options unless modification is absolutely necessary since default values are set Please contact the Somansa Support Team if option changes must be checked For the definitions of each option please refer to the table below TABLE 3 6 DEFINITION OF ADVANCED OPTIONS VisualChart Whether to display chart in a report or not 0 1 Locale Internationalization Locale Settings ko en DataTableLimitCnt Number of table outputs default 100 Options when Exporting Incidents to Excel 0 Exclude sample data only including name and Export
58. o detect through a general keyword or regular expression Severity Sets a severity when detecting a pattern 72 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Effective Input Field Range TABLE 4 13 EFFECTIVE INPUT FIELD RANGE FOR PATTERN Effective 5 Character Failure Message Range Numbers uppercase A pattern name should have at least Name 3 225 lowercase letters special 3 characters characters Numbers uppercase Description 1 225 lowercase letters special characters Numbers uppercase f f A blank value cannot be registered in Expression 1 200 lowercase letters special l the expression characters O cannot be entered in Severit Severity 0 999 999 999 Numbers Settings 4 5 1 2 File Format Manages a format to use in file attributes However unsupported formats cannot be detected and logs cannot be stored pe 4 14 DEFAULT INSPECTION FORMAT FILE Category Format Name FomatName Extension Copy ot Primed vocumem fp CET Text Extensible Markup Language Format P guag Rich Text Format Corel WordPerfect wpd wp wp4 wpb5 wp6 wp7 Word Basic f f processor Format 73 t SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual ol Jusen Jee Presentation Microsoft PowerPoint pptpptxpps Microsoft Outlook Express Basic 23 Database Microsoft Access mdb accdb Format Format Microsoft Compiled HTML O
59. o o n 300 os 300 o o o o 12 300 os 300 o o o o 13 KR Foreigner Registration Number 300 0 300 o o o o 14 US Driver s Ucanse Number MT NC 300 os 300 o o o o 18 KR Passport Number 300 os 300 o o o o 16 KR Phone Number 298 0 238 o o o o 7 Us Number AZ CA KS MA NE OK VA etc 162 0 162 o o o o 18 ous 143 0 143 o o o o 13 143 0 143 o o o o 20 a 0 a o o o o a 20 0 20 o o o o 22 US Driver s License Number OH 10 os 10 o o o o 23 KR Drivers License Number s 0 s o o o o Showing 1 1223 of 23 entries FIGURE 4 17 REPORT PC TOP PATTERNS BY DATA TYPE Top Agents by Data Type Top Agents can be viewed by data type The Number of Patterns and Categorization for Not Categorized Customer Employee Personal and Exception can be checked by data type in order Top Agents by Data Type Total Categorization Not Categorized Customer Employee Private Exception 14 018 0 14 018 H 0 H o Chat A Categorization Rank 10000 9 000 8 000 7 900 5 000 5 000 4 000 3 000 2 000 None 1 000 H 182168209103 192168137131 Rank Agenti User Dept Computer Name Total Categorization Not Categorized Customer Employee Private Exception 1 B 192 168 209 103 Seon Lee Company WIN UHE3HLNKEDB m o m o o o B 192 168 137 131 MKM somansa WIN S8C3TC185F7 4133 o 33 o o o Showing to 2 of 2 entries FIGURE 4 18 REPORT PC TOP AGENTS i SOMANSA 51 BY DATA TYPE Copyright 2015 SOMANSA All rights reserved Privac
60. o retain the most confidential data by selected department is displayed at the bottom Patter Total 14 018 Encrypted Not Encrypte Ji Seon Lee Mr KIM BE Encrypted M Not Encrypted Severity E di Seon Lee Gemeen FIGURE 4 6 REPORT PC RESULTS FOR TOP USERS Top Agents Displays the top severity 96 of confidential data detected from a user PC in order and the top list of detected severity results based on a user IP Pater Total 14 018 Encrypted 10000 9000 192168209103 192168137131 Not Encrypte PE Encrypted D NotEncrypted Pattem Fie User Dept Severity 6 Total Total A Seon Lee w 4133 22 Oa 2015 03 26 17 31 19 122 of ene FIGURE 4 7 REPORT PC RESULTS FOR TOP AGENTS 46 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Top Depts Displays data based on a Dept e Top Depts Total Total 13 964 46 HB 383838 Encrypted Rank Diet gma B zent Not encrypted Pattern File Rank Dept Severity Date Total Total 1 Direct 9 831 24 I 2015 03 30 20 21 15 somansa 4 133 2015 03 26 17 34 11 Showing 1 to 2 of 2 entries Ce FIGURE 4 8 REPORT PC RESULTS FOR TOP DEPTS Trends Displays the patterns trends of departments and users that retain confidential data files severity and indicates confidential data which has been retained per pe
61. of for Last Inspection Time several Inspections by Admin Notification Notification for Starting Uses a notification message when Settings Scheduled Task starting a scheduled task Notification for Terminating Scheduled Task Uses a notification message when terminating a scheduled task Schedule Settings Inspection Type Inspection target that performs file inspection Start Date Inspection start date Start Date and Time Inspection start date and time Cycle Inspection cycle can be run once daily weekly or monthly ff SOMANSA 61 Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual ES General amp Apply to Targets Name Version Modified Time 1 Policies gt Apply to targets gt PCs applied on Shortcut amp Data Inspection Detection Rule Select Advanced v Speed Control On Priority Norma mE Average CPU Usage 20 Idle Time Check Interval 600 sec Notification when Inspection ends Off Notification Settings On Last Inspection Time Notification On Start Notification On End Notification On amp schedule Add Inspection Type Start Time Cycle FIGURE 4 31 DISCOVER POLICY DETAILS SCREEN is Item Description D Detection Rule Runs a data inspection based on the registered policy in the Detection Rules Q Inspection Speed Control Function A resource of the system can be specified for the process running
62. om gt Technical Support Somansa Technical Support Team 408 701 1302 support somansatech com Inquiries on Function On Line Remote Assistance Off Line Maintenance Support Requests User Training Requests Remark The social security numbers on the UI screens included in the Manual are fabricated numbers for the purpose of providing realistic examples tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Contents Endpoint DLP Privacy 9 1 1 S UM T Eet 1 1 1 What is Endpoint DLP Privacy i eene tte tette tttennnttttennn L2 System sia P oci MM M E 1 3 Package Configurations me eee e e rere rr ense rrr rsen end 1 4 Privacy Configuration PAYING NIKA NAKAANGAT 1 5 Product InformatiON HE E 1 5 1 First Release Date March 25 2015 1 5 2 Manual Configuration aan nnaman NE LEE 2 1 Program Beguiremer icai Guta Dace EEN 2 2 eet kis o Tr AA ave 2 2 1 Installing Privacy i Server Package eerte ttennnnnttttnnnnets 2 2 2 Installation Pathanen E 2 3 re EEN Issuarice Procedute uii te nu E C RE RH RES 2 3 2 What happens if the license is not renewed ENEE 3 Configuration M tte EEN 3 1 Running Configuration Manager 3 2 Configuration Manager Setup 3 3 Initial Connection Settings Ime rem nmn nrnna 3 3 1 Enter Password upon Initial Connection EE tat SOMANSA Copyright 2015 SOMANSA All rights reserv
63. omanss Mc KM 192 168 137 129 Ej Medical Record Number 100 txt 300 o None None 2015 0326 1731 12 D Bromansa Mtr Kin 192 168 137 128 Ej P Addrezs 100 rn 100 a None None 2015 03 26 17 31 12 D Geert 192 168 137 129 E emai t00 xt 100 o None None 2015 03 26 1731 12 D Buenas de 192 168 137 129 E Credit Card Number 100 txt o None None 20150326 1731 12 D Biomansame km 192 168 137 too o None None 2015 0226 1731 12 D Biomansa Mc kin 192 168 137 E Medical Record_Number 100 xt 300 o None None 20150326 1721 12 somansamrkim 192 168 137 129 Ej ie Address 100 24 100 o None None 2015 03 26 1731 12 serien 192 168 137 129 Ej emaittoo t 100 o None None 20150326 1721 12 EN 192 168 137 129 Ej Credit Card Number t0O vx 210 a None None 2015 03 26 17 31 12 D Sans 192 168 137 129 E IP sddresslsample Copy eet a o None None 20150326 1731 12 Biomanamr oM 1921681272 1234 a o None None 2015 0326 1731 12 D somansaMrkiM 192 168 137 128 Ej sRQORRNA t E o None None 2015 03 26 17 31 12 D Geert 192 168 137 129 Ej srcusosG en 100 o None None 20150326 1731 12 D Biomacss Mc kim 192 168 137 E SRCOASNU txt 300 o None None 2015 03 26 1731 12 D passen 192 168 137 129 E SRSZkNX ot 222 o None None 2015 03 26 1731 12 ET Date Si File Name Fiesta Name a Over Expiration Date Data Type n E Depvuser Agent File Name Pattern Holding Days Expiration Date Data Type inspected Time BiCompany l Seon Lee 192 168 209 103 mceturingoverrides xml 563 o No
64. ory Search Date 2015 05 01 7 2015 05 14 E Update Date Update Name View Folder 2015 05 14 16 08 49 Agent Update Update Name Agent Update Group Name 3 GROUP1 Sales File Name S PlAgent exe Revision FIGURE 3 16 VIEW AGENT UPDATE HISTORY SCREEN 29 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 6 DLP Center Settings 3 6 1 Server Management The status of the DLP Center Server and its operation can be set As shown in Figure 3 17 Restart Start and Stop functions for the DLP Center Server are provided DLP Center sever Control DLP Center Server Control DLP Center Server ail TTT te resh FIGURE 3 17 DLP CENTER SERVER MANAGEMENT SCREEN v How to reconfirm service from the system console after running all services Information about the daemon process where components Privacy i Server DLP Center Configuration Manager Job Server Privacy i Agent Update Server are running can be viewed as below ps ef grep java d root localhost call FIGURE 3 18 JAVA SERVICE CONFIRMATION SCREEN The status of the Apache server can be viewed as shown in the figure below for components to communicate externally 30 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual ps ef grep httpd Check Apache server FIGURE 3 19 APACHE SERVICE CONFIRMATION SCREEN 3 6 2 Advanced Options Optio
65. r Connection Policy Update and Agent Update Schedule settings are available to run a task temporarily or repeatedly Forced execution without user consent or executing a task with user consent can be set E 5 General 5 Apply to Targets Name Dept d PC Ro 5 Details Task Type File Inspection Detection Rule on Current Policy Message Running without user acceptance 5 Schedule Type Run Immediately M Valid Date 2015 03 31 hours v minutes Hide audit logs on user PC FIGURE 4 39 TASK SETTINGS SCREEN 76 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Table 4 17 below contains detailed information about remote command types Remote Command Description Types File Inspection Detection Rule Runs confidential data inspection with the Inspection Policy assigned on Current to a department or user Policy File Inspection Runs confidential data inspection with another policy not the Temporary Inspection Policy assigned to a department or user Detection Rule File Delete Deletes files from the latest inspection results Update l A task that is run on an agent when Server Connection Policy is Connection modified Policy Transfers an update command to a user when the agent update Agent Update module is configured on the server Cancel for Inspection in Cancels an inspection that is currently running on an agent p
66. riod Pattern File Severity Total Total 13 964 46 EO RN Chart a Pattern Trend File Trend 49 5 wo 48 5 48 0 47 55 47 0 46 5 46 0 T T 1 T 2015 03 29 2015 03 30 2015 03 31 2015 04 01 2015 03 29 2015 03 30 2015 03 31 2015 04 01 Pattern Fil Date T Severity Total Total 20150801 12968 LL 20150231 13364 1 Fw 2015 03 30 14018 EEE 2015 03 29 14918 TT Showing 1 to 4 of 4 entries GE A gt FIGURE 4 9 REPORT PC RESULTS FOR TREND Top Long Term Retention Files Displays data for files which include confidential data for an extended period of time The retention period of a detected file and saved confidential data customer information personal usage can be checked 47 t SOMANSA Copyright 2015 SOMANSA All rights reserved Top Long Term Retention Ger Privacy V5 0 Admin Manual Total Fie Long Term Retention Files Long Term Retention Se E 30 530 0 83 50 1730 180 3645 365 D 49 100 49 H o H H H O chana Long Term Retention Files Rank E 25 20 15 10 5 Ji Seon Lee MrKIM 1729 Been ge s0 179 Eco 1 290 Rank User Dept Total File Long Term Retention Files Long Term Retention Files 1 290 30 590 60 890 90 1790 180 3640 3650 1 Ji Seon Lee Company 27 z 100 27 o o o o o Wen somansa 100 2 o o o o o FIGURE 4 10 REPORT PC RESULTS FOR TOP USERS BY LONG TERM RETENTION Top Patterns Displays data based on a pattern
67. rive Fle Copy has been blocked 100 open 2018 03 30 181787 somansa Mr KIM Block Ri Copy Removable Drive File Copy has been blocked 100 Open 2015 03 30 15 32 46 ipia sion nk aba B Media voan Med the sccis pati in al amo New 2015 03 30 17 03 38 Company li Seon Lee Q Block Medis cD ROM Block the access to system device of explorer D New 2015 03 30 17 09 18 Company Ji Seon Lee Block Media CD ROM Block the access to system device of vds D New 2015 03 30 17 12 51 FIGURE 4 27 ENDPOINT HISTORY SCREEN General Action Type Block Channel Copy Sub Channel Removable Drive Occurred Time 2015 03 30 14 45 04 Reported Time 2015 03 30 14 45 10 Application PlAgent User IP 192 168 209 103 File Saving Status Don t save File Saving Results file copy does not exist Rule Type Contents E Pattern Information Name Count ALL Credit Card Number 21 US Medical Record Number 25 US Social Security Number 24 KR Credit Card Number 25 File Name Pattern Severity File Size Byte Created Time Modified Time identical File Po 145 12 505 2015 03 26 16 32 00 2015 03 26 16 32 00 2 File 2 User SS User Informaiton Ji Seon Lee Company Files on Hold Count 27 Pattern 9 885 Top Holders 1 Duration Endpoint File Pattern Recent Week 3 300 Recent Months 3 300 Recent 3 Months 3 300 B Status and History Open Comments History Open somansa 2015 03 30 06 03 21 FI
68. rogress TABLE 4 17 TASK TYPES AND FUNCTIONS Policy Item Description Task Type Specified in Remote Command Types and Functions in Table 4 37 and runs a selected task e File Inspection Detection Rule on Current Policy Sets a task with a policy specified for a user in POLICIES Apply to Targets e File Inspection Temporary Detection Rule Sets a task with a rule specified in Detection Rules item which appears when selecting e File Delete Sets a task that selects the detected file of a user department chosen in Target and deletes the file through the Add File button which appears when selecting e Update Connection Policy Server Policy can be updated by selecting the 71 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual desired settings in Update Target which appears when selecting e Cancel for Inspection in progress A policy to cancel an Inspection by Admin that is currently running can be registered Details A task for a user or department can be specified Execution without user consent or a user consent request can be selected When selecting a user consent request a message for a consent request can be entered Schedule Running methods include an immediate execution or scheduled execution A scheduled execution runs a task on a scheduled date and time When selecting audit logs to be hidden in a user PC the audit logs do not remain in
69. s The data file details of departments and users that were most recently inspected can be viewed E o Depyuser Agent Fle Name Pattern Holding Days Expiration Date Data Type Inspected Time D passt 192 168 137 129 vmmsilog 20130122 013630 log 1496 o None None 2015 03 26 1731 12 DI 2omansaMrkiM 192 168 137 129 7 veredist_x86 log 102 o None None 2015 03 26 17 31 12 O Bomans KM 192 168 137 129 Microsoft Visual C 2010 x86 Redistributable Setup_20150324_143713634 MSI_ve_red msitxt 76 o None None 2015 03 26 1731 12 D 2omansamc kim 192 168 137 129 E Microsoft Visual C 2010 168 Redistributable Setup 20150324 143706086 MSL v red mii t 73 o None None 2015 0326 1731 12 D DEE 192 168 137 Bil somansa Sample DB Bank Customers xlsx 120 o None None 2015 03 26 1731 12 B Agent information Ed Fie information EB Patter information ER e File Name Somanza Sample DB_Sank Curtomers ire 21 Contents Dept somansa Original Format Not Applicable M Go Computer Name WIN SeC3TCI8SE7 Path Coren sa a Le Agent IP 192 168 137 129 Flle Size 12 505 bytes US Driver s License Number VT 25 Created ren 20150226 16 21 02 US Medical Record Number 25 Modified Time 2015 03 26 16 31 05 US Social Security Number 24 Cortes Inspected Time 2015 03 26 17 31 12 ii a Submitted Time 2015 03 26 17 31 11 Identical File 2FlezUser D Bsomanam ki 192 168 137 129 GOEN 100 a None None 2015 03 26 17 31 12 D Bi
70. s and special characters 33 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 7 2 Session Time Set the Session Duration of the Configuration Manager Session Time Session Duration Time 10 Minute ES FIGURE 3 22 SESSION TIME Effective Input Field Range TABLE 3 9 EFFECTIVE INPUT FIELD RANGE FOR SESSION TIME SETTINGS Effective Character Failure Message Range Session Duration 1 10 Enter the session duration 3 7 3 Time Synchronization Synchronizes the time between product modules in standard time based on the NTP Server Time Synchronization Current Server Time 2015 03 24 17 54 26 Run Synchronize your server clock with your local standard time now Sync every hours Apply FIGURE 3 23 TIME SYNCHRONIZATION Effective Input Field Range TABLE 3 10 EFFECTIVE INPUT FIELD RANGE FOR TIME SYNCHRONIZATION Effective Character Failure Message Range Synchronization Enter a synchronization cycle 199 Numbers Cycle 34 tt SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 3 74 UID The server UID information can be viewed for license issuance UID UID k8x5m60 FIGURE 3 24 UID 3 7 5 Access IP Configures Access IP to the Control Panel The Control Panel can be connected from a total of 2 IPs including a local IP and a set IP Access IP If IP is set the access to configuration manager will be a
71. s that include data patterns of the Number of Patterns detected files Number of days that a user retained the detected files Expiration Date Expiration date of the detected files Information Type Set information type of the detected files Inspection Date Date of the inspection Retention Day File Inspection History File inspection history and inspection 96 can be viewed Use the View Results button on the right side to check the inspection results FIGURE 4 26 FILE INSPECTION HISTORY SCREEN 4 3 2 Endpoint Displays an exported or blocked file according to the channel and pattern conditions by a user or department Through View Information details of an exported file Figure 4 28 above can be viewed By searching a similar file files with the same confidential data based on a user can be viewed Figure 4 28 below 56 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual e Endpoint Data Recent 1 Week Last Month Lan Week Verterday ThisWeek This Month Custom 2075 0330 AcionType Loes Bi Channel Sub Channel Fle Name cm Panam Status Fse mj Em Depuuser Action Type Channel Sub Channel Contents Tamam Suns Time Company Ji Seon Lee Block Removable Drive File Copy has Deen blocked 7 628 Open 2015 03 30 14 43 43 Company Seon Lae O aka Pamovable Dive Fle Copy has bean blocked 100 Open 2018 03 30 15 52 48 somansa Mic KIM aba Removable
72. sis results by condition about confidential data retained Discover in a user PC within the network and the exported blocked log of Endpoint Since Reports display a variety of graphs lists and main result items of the detected results the Admin has the advantage of being able to quickly analyze according to the selected criteria TABLE 4 2 REPORT PROVIDED BY DLP CENTER Type Top Users Top Agent Top Depts Trends Top Long Term Retention Files Top Patterns Discover PC Long Term Offline Agents Agent Installations Top Users by Data Type Top Depts by Data Type Trend of Data Type Top Patterns by Data Type Top Agents by Data Type ist SOMANSA Content Displays data by top users in order who retain the most confidential data based on the selected department Displays the ranking of confidential data files retained by an agent Displays data by top departments in order that retain the most confidential data based on the selected department Displays results for confidential data retained in a user PC regarding inspected date log Displays data by top PCs which retain confidential data files for a long time data by that confidential data regarding a selected department Displays top patterns retain or user Searches agents which were offline for a long time Identifies Privacy i installation status of users Checks data Categorization 96 and Categorization Content in order by a user C
73. t Not Specified va Not Specified vyla Media Control Not Specified ja Not Specified J a amp Connection Policy Not Specified ka ja FIGURE 4 36 POLICY APPLICATION SETTINGS SCREEN Effective Input Field Range TABLE 4 12 EFFECTIVE INPUT FIELD RANGE FOR APPLY TO TARGETS Effective Item Character Failure Message Range Numbers uppercase lowercase letters special characters 71 t SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 5 Manage 4 5 1 Identifiers 4 5 1 1 Pattern In Pattern basic patterns of confidential data provided by SOMANSA can be viewed Provided patterns include social security number driver s license number credit card number health insurance card number passport number account number cell phone number phone number IP address and E mail address and more When detecting a specific phrase or pattern a user defined pattern can be generated Basic patterns cannot be deleted and expressions cannot be modified or deleted Pattern is used when creating Inspection Policy in Policy Management and Discover e Details Namex Highlight Description Expiration Datex Expression E Severity EJ Low 0 FIGURE 4 37 PATTERN DETAILS SCREEN ie Policy Item Description Expiration Date Sets an expiration date for the currently registered pattern Q Expression Sets a pattern t
74. talled Please note that the package cannot be installed if PostgreSQL is not installed Run the Package as follows Please check the file permissions when running the Package sh Privacy i V5 0 for DD HyBoost Install BIN During installation when the following message is received enter the IP of a PC where the Security Admin can connect to the Configuration Manager Please note that the Configuration Manager can be only connected from one registered PC 12 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Please input the IP Address of the desktop to connect Configuration Manager 7192 168 10 171 Information that the User must enter 2 2 2 Installation Path When installation of Privacy i 5 0 for DLP HyBoost Package is complete the product is installed on the somansa path as shown below Figure 2 1 gp root localhost somansa FIGURE 2 1 INSTALLATION PATH SETTINGS SCREEN When installation of the Privacy i Server is complete connect to the Configuration Manager extract the UID of the Server and apply for issuance of a License by contacting a Somansa Support Team member The connecting address to the Configuration Manager is as follows https IP ADDR cm 2 3 License 2 3 1 Issuance Procedure STEP 1 Connect to the Configuration Manager through a web browser and check the UID preferences With the extracted UID request for License Issue A Licens
75. ted the file name field is activated and Included Target and Excluded Target can be selected A file name to detect exclude can be entered A file name must be entered with its extension Q Path When selected the path name field is activated and Included Target and Excluded Target can be selected A path to detect exclude can be entered File Format All Formats or Specify Directly can be selected When Specify Directly is selected the desired format among formats described in Table 4 21 can be selected File Created Date When selected the date field is activated and date created to detect can be selected 6 File Modified Date When selected the date field is activated and date modified to detect can be selected File Size When selected the field size is activated and file size to detect can be 75 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual entered Size is divided into a range and minimum for selection o Effective Input Field Range TABLE 4 16 EFFECTIVE INPUT FIELD RANGE FOR FILE ATTRIBUTES Effective Character Failure Message Range Numbers uppercase Name should have at least Name 3 225 lowercase letters special characters characters 4 5 2 Admin Action 4 5 2 1 PC Manages confidential data on a user PC and agent environment for a user or department Types provided with a remote command include Inspection by Admin Delete File Serve
76. ter Admin account information ID somansa Password Re enter Password E Mail Address smkim somansa com Access IP 192 168 10 151 Apply Change on Next Time FIGURE 3 5 ENTER SECURITY ADMIN ACCOUNT INFORMATION FOR CONFIGURATION MANAGER DLP CENTER Effective Input Field Range TABLE 3 4 EFFECTIVE INPUT FIELD RANGE UPON LOGIN Effective Character Failure Message Range Numbers uppercase Enter the DLP Center admin password Password 9 41 lowercase letters special characters Numbers uppercase Enter the DLP Center admin password again Re enter lowercase letters special Password characters Numbers special Enter the valid IP of the DLP Center admin Access IP 15 characters 19 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Recommendations Y Password should have at least 9 characters and include English letters numbers and special characters 3 4 COMMON 3 4 1 Common Area Settings Once the initial Configuration Manager setup is complete the Common Area Settings menu appears This initial page appears upon re login to the Configuration Manager The Common Items provide the Default Database Settings Log Forgery Falsification Prevention and Alert Settings for disk space of Privacy i V5 0 for DLP HyBoost 3 4 1 1 Default Database Connection Settings Figure 3 6 is a screen where a common database connection can be set up The co
77. the agent Effective Input Field Range TABLE 4 18 EFFECTIVE INPUT FIELD RANGE FOR CONTROL BY ADMIN Effective Character Failure Message Range Numbers uppercase Enter a task name Name 1 120 lowercase letters special characters Numbers uppercase Message 1 4000 lowercase letters special characters 4 5 3 Alerts Notification 4 5 3 1 Reports Statistics of Discover and Endpoint can be sent to the E mail registered in user information 78 tat SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual ED Bi Report Type Discover PCs Endpoint O Top Users Top Users Top Depts Top Depts Trends Trends Top Long Term Retention Top Channels Files Top Patterns Top Patterns Long Term Offline Agents Agent Installation Top Agent Top Users Dy Data Type Top Depts by Data Type Trend of Data Type Top Patterns by Data Type Top Agents by Data Type 8 Filter Settings Date Last 2 Months Last 3 Months Last 6 Months Last 1 Year Custom Sort By Pattem OFile Pattern Select a Print amp All O Pattern O File Pattem Detail Included Not Include Information E Target to Inspection Target Name 8 Di Company B Target to Notification B Schedule Group Leader or Admin Start Date 2015 04 01 m 18 ell sz v Group Privacy officer Chief Privacy Officer Cycle Once v Custom
78. thers Adobe Portable Document Format Policy Item Description File Type Specified file types can be selected Desired file types can be entered when directly selecting Add Q File Extension Desired file extensions can be entered when detecting a file The extensions provided by default are listed in Table 4 14 Effective Input Field Range TABLE 4 15 EFFECTIVE INPUT FIELD RANGE FOR FILE FORMAT Effective Character Failure Message Range Numbers uppercase Enter a format name Name 14225 lowercase letters special characters File An empty value cannot be i 1 20 Letters i Extension registered for file type 74 Lei SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 5 1 3 Attributes In Attributes a condition value of a file attribute to be inspected can be specified Inspection can be carried out according to file name path type date created and size To create a policy one or more conditions must be selected Each setting satisfies the AND condition and a file is detected according to the settings for each item A generated file attribute is used when creating a policy in Policy Management and Discover e Attributes EC Details Name File Name lot Path 3 File Format EJ All Formats File Created Date loff File Modified Date Off File Size Off FIGURE 4 38 FILE ATTRIBUTE DETAILS s Policy Item Description File Name When selec
79. ts reserved FIGURE 3 29 CHECK CONFIGURATION MANAGER VERSION 38 tet SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual 4 DLP Center Privacy i is a product that provides Data Protection and Host Data Loss Prevention by searching and identifying personal and confidential data stored on a company PC and provides technological and managerial protection measures such as deletion In addition Privacy i provides an Endpoint Data Loss Prevention solution which controls dataflow from a user PC to an external channel Privacy i is operated and managed by the DLP Center a central management console Since the DLP Center is operated as a web server the authorized admin can connect to the DLP Center through the company intranet anytime and anywhere for a convenient operating environment DLP Center Discover Dscovery Severity Top Users Detection Rules Top Fles Top Depts Top Patterns Top User by Long Term retention Trend of Patterns Reports Trends Top Users Top Depts Top Patterns Long Term Offline Agents Agent Installation Top Agent Top Users by Data Type Top Groups by Data Type Trend of Data Type Top Patterns by Data Type Top Agents by Data Type Top Long Term Retention Files EndPoint Top Users Top Depts Trendofincidens Top Channels Top Patterns icdidents Server FIGURE 4 1 FUNCTIONS PROVIDED BY THE DLP CENTER The DLP
80. ttribute Policy can be viewed in the Manage Identifiers File Attribute Detection Rules amp General Modified Time Name E Details Rule Type S Contents Select File Attributes iv Pl Uninspectable Select File Attributes v T Attributes B Advanced x File Format Auto Detection off s Compressed File Inspection of FIGURE 4 30 DETECTION RULE SETTINGS SCREEN ie Policy Item Description Content Detects based on the selected File Attribute Data Pattern and Number of Detection During Inspection by Admin the results are shown in Contents Uninspectable Unapproved Encryption File can be selected During Inspection by Admin the results are shown in Uninspectable for an encrypted document or a compressed file 59 tf SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy v5 0 Admin Manual Attribute Detects based on the selected Policy in File Attribute not the data inspection During Inspection by Admin the results are shown in Attribute Effective Input Field Range TABLE 4 5 EFFECTIVE INPUT FIELD RANGE FOR DETECTION RULES Numbers uppercase Name 1 120 lowercase letters special characters 442 Discover Discover provides a function to manage the policy to be used for inspecting confidential data retained in a PC 4421 PC A policy that is used when inspecting confidential data retained in a user
81. y v5 0 Admin Manual 4 2 2 Endpoint Top Users Displays data including allowed blocked patterns by policy file and severity 96 by user in order Through Report top users who exported the most confidential data can be viewed D EE e EE 3 oa Goen Boc suh Gee Oie ven a p pec pu pro E 400 4 H H 4 aaa Chat A Severity Rank so x0 250 Di Di so o u wk mi we owt pa perm p pm PS a 3 3 m FIGURE 4 19 TOP USERS Top Depts Displays data including allowed blocked patterns by policy file and severity 96 by department in order Through report top departments which exported the most confidential data can be viewed Top Depts Date Last Month Last Week Yesterday ZEN This Month Custom 2015 03 29 amp 20150401 amp Action OAllow Block Sort By amp Pattern OFile Pattern Reset Pattern File Severity Low Severity Medium Severity High Severity 200 2 0 0 2 Ee Chart a Severity 96 Rank 100 80 60 40 20 H Company Rank Dept Pattern File Severity Low Severity Medium Severity High Severity 1 somansa 100 1 o 0 HEN 2 Company 100 1 o 0 aaa Showing 1 to 2 of 2 entries 15 FIGURE 4 20 TOP DEPTS 52 ra SOMANSA Copyright 2015 SOMANSA All rights reserved Privacy V5 0 Admin Manual Trends Displays trend of allowed blocked patterns by policy file and severity 96 and shows the trend of departments and users whic
Download Pdf Manuals
Related Search