Data Loss Prevention (DLP) Policies in Exchange 2013

Posted: September 3, 2015 in Exchange

The Data Loss Prevention Policy allows users to define policies and policy rules for the organization to improve protection of information usually sent through email, including financial and personal data.DLP policies contain sets of conditions, which are made up of transport rules, actions, and exceptions.

In this example we’ll create policy which,in case someone in organization,send a mail with word “salary” in subject or body,report will be sent to administrator.

From ECP click compliance management,data loss prevention,’triangle” near + and choose New custom DLP policy:

Untitled

Select policy and edit it (pencil icon)

Untitled

Click rules,select “triangle” again 🙂 and select Notify sender when sensitive information is sent outside the organization

Untitled

Select “the sender is this person” (track messages sent by specific people-don hall)

Untitled

Select desired user,click add and click OK again

Untitled

We now need to add second condition-track specific word in subject or body (salary)

Untitled

Untitled

What to do when condition is met-add action (notify adminstrator)

Untitled

On first “select one” choose administrator

Untitled

Untitled

and the second select one choose “Include original mail”

Untitled

Untitled

When we click save,transport rule is automatically created (mail flow-rules)

Untitled

Testing and verifification:

From don.hall  i sent email to my hotmail account with subject salary and administrator got this email

Untitled

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s