ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to detect password protected zip and pdf files with the Endpoint Prevent Agent.


Article ID: 159966


Updated On:


Data Loss Prevention Endpoint Prevent Data Loss Prevention Endpoint Discover


As a DLP Admin, how can I detect password protected files, like zip and pdf, at the Endpoint?


Encrypted file-type detection, by default, is performed by the Endpoint Server.


Available Workaround:

Utilize a 'Custom File Type' signature to detect password protect .zip files on the Endpoint Server and Endpoint Agent.

Reference: Symantec Data Loss Prevention Detection Customization Guide 14.0