Endpoint agent detects the encrypted email messages from outlook even though they are marked under exception.


Article ID: 159662


Updated On:


Data Loss Prevention Enforce


Message sent using outlook default Encrypted which is added under exclusion Endpoint agent detects it. This Encryption option can be found In outlook, under new email > properties > Security properties there is an option called Encrypt this message contents and attachment.


This is by design, even though the message is marked for encryption before sending, the actual encryption does not happen on the Outlook client but instead it happens on the Exchange server. Therefore by the time the email message leaves the machine it is still unencrypted so by default the DLP agent monitors it and detects any sensitive content found which violates a policy.