In addition to the list of pre-configured Response Rules, it's possible to configure "custom actions" for the DLP Cloud Detection Service in v14.6.
N/A
There are more response rules available in DLP v15, but those actions can also be leveraged by utilizing the "Custom Actions on Data-at-Rest" and "Custom Actions on Data-in-Motion" response rules.
DLP 14.6, with DLP Cloud Detection Service registered, for integration with Elastica CloudSOC, or WSS.
Put the following into the "Custom payload" field of a "Custom Action on Data-at-Rest" action:
|
Notes:
path
). Spacing does not matter, but is included here for readability.“markerFile”
is a string, not a boolean. It should be either true
or false
.customResponsePayload
parameter of the output, but any information transferred will be erased. The example above will have no customResponsePayload
parameter, as everything gets transferred to other fields.
Put the following into the "Custom payload" field of a "Custom Action on Data-at-Rest" action:
|
Notes:
file_access_all_read
: Set File Access to 'All Read'file_access_internal_read
: Set File Access to 'Internal Read'file_access_internal_edit
: Set File Access to 'Internal Edit'collab_access_preview
: Set Collaborator Access to 'Preview'collab_access_read
: Set Collaborator Access to 'Read'collab_access_edit
: Set Collaborator Access to 'Edit'collab_access_remove
: Remove Collaborator Accessprevent_download
: Prevent download, copy, print
Put the following into the "Custom payload" field of a "Custom Action on Data-in-Motion" action:
|
Notes: