Can Symantec DLP Endoint Agent inspect database traffic sent to the cloud via port 1433?
Article ID: 235305
Updated On:
Products
Data Loss Prevention Endpoint Prevent
Issue/Introduction
PowerBI and Tableau send data over port 1433 to an Azure SQL DB instance.
Can Symantec DLP Endpoint Prevent Agent inspect traffic going from a user's workstation to the cloud via port 1433?
Environment
Release : 15.8
Component : Endpoint Prevent Agent
Resolution
DLP Endpoint Agents or other DLP products do not natively inspect data-in-motion over the port 1433.
Usually where a database is concerned Data-At-Rest scanning is done via a Network Discover server where the stored database content is extracted for detection against your policies.
Alternatively you could use a Network Monitor to inspect and monitor such traffic by adding the required port for inspection of network traffic received via a Span/TAP, but the Network Monitor is for observation only as it does not allow any blocking nor can it inspect any traffic that might be encrypted outside of DLP.
Additional Information
For more information on DLP product please refer to the online documentation:
Feedback
Yes
No
Powered by
