Turning EMDI on for the agent

search cancel

Turning EMDI on for the agent

book

Article ID: 247763

calendar_today

Updated On:

Products

Data Loss Prevention Data Loss Prevention Endpoint Prevent

Issue/Introduction

After creating an EMDI and adding it as an optional validator to a DI policy rule, no detection occurs.

Environment

This is applicable to versions 16.x and 25.x

Cause

EMDI is not turned on by default.

The EMDI index does not publish to the Endpoint Agent unless the parameter has been set in the Agent's Detection Server's Protect.properties file.

Resolution

Verify that the parameter EMDI.EnabledOnAgents = true in the Protect.properties file on each endpoint server.

If this setting is still false, edit the protect.properties file and set it to true.

This property will be picked up by the agent after your polling time has expired (default is 15 minutes.)

Additional Information

This is applicable for 16.x and 25.x as outlined in the EDMI troubleshooting section of online help.

Example:

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/25-1/about-data-loss-prevention-policy-authoring/emdi-troubleshooting/the-emdi-index-doesn-t-get-published-to-the-endpoint-agen-0.html

Feedback

thumb_up Yes

thumb_down No