What are agent groups used for in DLP?
And how are they applied and evaluated?
Symantec Data Loss Prevention (DLP)
You can use agent groups to enable logical grouping of your endpoint computers based on conditions. Agent groups can be based on
Agents are evaluated and included in groups based on a priority ordering of conditions. The conditions are, from highest priority to lowest:
For example, an agent belongs to both the "Endpoint host name group" and the "Agent attribute" based group. Since the Endpoint host name group has highest priority among all three types of groups, the agent belongs to Endpoint host name group.
Check agent group status and manage agent groups from the System > Agents > Agent Groups screen. To view agent group conflicts, click "View Agent Group Conflicts" on the right-hand side of the screen.
Information about agent groups is divided into several columns on this page. You can click any column header to sort entries alphanumerically in that column. Click the column header again to sort in reverse order.
Use these options to perform the following actions: