Incidents no longer generate after Endpoint Servers are upgraded to DLP 15.8
search cancel

Incidents no longer generate after Endpoint Servers are upgraded to DLP 15.8

book

Article ID: 213016

calendar_today

Updated On:

Products

Data Loss Prevention

Issue/Introduction

The agents in the environment are still on 15.7 MP2 or below. 15.5 agents with 15.8 MP2 servers may also show no incidents being generated.

As per the backwards compatibility table in the 15.8 Upgrade Guide, policy and configuration updates from 15.8 Endpoint Servers can be sent to 15.7 DLP agents, however, "new policy rules that are introduced in a given release are not supported by earlier agents".

Environment

Data Loss Prevention 15.8

Cause

CommLayer.ENABLE_POLICY_MATRIX_DELTA_REPLICATION is set to 0

Resolution

1. In the Agent Configuration under the Advanced Settings, update the value of CommLayer.ENABLE_POLICY_MATRIX_DELTA_REPLICATION from 0 to 1, (Default is 1).
2. Make a small change to ALL active policies. Example: add additional text to the policy description.

 

Additional Information

Policies need to be re-cached on the endpoint devices after changing the Agent Configuration.
In this specific scenario, policy caching will not be automatically triggered. Only updating the policies will trigger the cache to replicate.