After upgrading the DLP Agent to 15.8 some websites may experience performance issues in Chrome
This includes the following:
Note: All of which worked as expected in 15.7 or earlier
Release : 15.8
Component : Windows Endpoint Agent
Conditions: The issue is typically only observed when the Agent Advanced Setting VEP_File_Elimination.int is set to 0,1 or 4. The product default is 3.
Additional file scanning while loading websites may occur due to enhancements to the Chrome HTTP/HTTPS Attachment scanning feature.
For HTTPS only websites, we recommend adding the following filter to the agent configuration:
Channel: HTTP/HTTPS Attachment
With the new scanning technique these files can add up and take a noticeable amount of time and impact the user experience in Chrome. Be aware that this will ignore these file types for all https attachment activity (email, uploads, etc). The risk introduced with these files filtered is low as these file types are not a typical DLP threat vector.
Save and Apply the filter then verify the improvements.
For HTTP based websites, update the following setting to 1 in the Agent Advanced Settings: NetworkMonitor.APPLY_PREFILTERS_ TO_FPR.int
If issues persist then review the FINEST level agent logs for the following types of messages for other file types to add to the filter:
Message: The file <path to file>\<filename> was allowed to be copied or saved.
These message are applicable when following a Chrome logging message such as:
Message: Received rtam message for process C:\Program Files\Google\Chrome\Application\chrome.exe(6300) create status(0) session Id(1) sandboxed appliction(0) store appliction(0) subsystem application (0)
See also: Agent Advanced Settings