You can set specific applications as Trusted to prevent DLP Endpoint from continuously inspecting them and causing performance issues.
IMPORTANT: Use this process with care and discretion. When you set applications that can transfer files as Trusted, these files bypass DLP Endpoint.
Create an Application Template for the trusted application:
- Click Menu, Data Protection, Classification.
- Click the Definitions tab.
- Under Source/Destination, click Application Template.
- Under Application Template, click Actions, New.
- Name the new application template.
- Under Process Strategy, click the drop-down list and select Trusted.
NOTE: You now see the option Analyze Memory Mapped Files. The default setting for this option is Disable. If you enable this option, DLP Endpoint analyzes memory-mapped files such as Autodesk 3ds Max graphic files. Because of processing overhead, we do not recommend that you enable this option unless needed.
- Under Available Properties, select the executable file name.
- In the Value column, type the name of the executable of the trusted application (for example, Notepad.exe), and then click OK.
- Click Save.
Add the Application Template for the trusted application to a rule:
- Click Menu, Policy, Policy Catalog.
- Click the Product drop-down list and select Data Loss Prevention extension.
- Click the DLP Policy to which the application definition needs to be added.
- Click the Settings tab.
- Under Settings, click Application Strategy.
- Under Override Applications Settings, click the Application Template drop-down list and select Application Strategy.
- Click the Strategy drop-down list and select Trusted.
- Under Actions, click Add.
- Click Apply policy.