ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Agent "ENABLE_AGENT_TAMPER_PROTECTION" anti tamper settings in DLP

book

Article ID: 160420

calendar_today

Updated On:

Products

Data Loss Prevention Enforce Data Loss Prevention

Issue/Introduction

You want to know what values can be configured for the Symantec Data Loss Prevention (DLP) agent configuration advanced setting "ENABLE_AGENT_TAMPER_PROTECTION " and what their effect will be.

Resolution

The codes are based on a binary matrix…

0 (000) : Disable all tamper protection.
1 (001) : Enable only FileSystem Tamper Protection
2 (010) : Enable only Process Tamper Protection
3 (011) : Enable FileSystem & Process Tamper Protection. Registry Tamper Disabled.
4 (100) : Enable only Registry Tamper Protection
5 (101) : Enable Registry & FileSystem Tamper Protection. Process Tamper Disabled.
6 (110) : Enable Registry and Process Tamper Protection. FileSystem Disabled.
7 (111) : Enable FileSystem, Process and Registry Tamper Protection. This is the default configuration.