Resolved and Known Issues

This section lists the current resolved and known issues.

Table 1. Forcepoint Data Security Cloud | DLP Resolved Issues
Key ID	Description
NEO-18624	Resolved misleading rule summaries caused by adding exclusions.
NEO-18623	Fixed the Alert Activity Filter to display the correct list of values and allow filtering by rule.
NEO-18587	Resolved a user interface crash that occurred when generating an alert related to “No Match” and attempting to unmask forensics data.
NEO-18544	Fixed an issue where notification emails were sent for rules even when an exception condition was met.
NEO-18536	Corrected the match count displayed in the Classifiers section when multiple classifiers were triggered by the same rule.
NEO‑18520	DPS resource resolver stability: Corrected an issue in the DPS resource resolver that occasionally caused errors during full resource updates. Resource updates now complete reliably.
NEO‑18490	Profile distribution issue: Resolved a problem where profiles were not properly distributed when a custom endpoint application was configured to monitor screen capture. Profiles now propagate correctly in this scenario.
NEO‑18486	Profile name length: Fixed a problem that prevented profiles with long names from being updated. Profiles can now be updated regardless of name length.
NEO-18482	Fixed an issue where no alerts were displayed for complex classifiers since the classifier was reported as null.
NEO‑18414	Addressed incorrect data shown in the Unique Value field by hiding it when Cloud DLP returns either total or unique match counts based on policy configuration.
NEO‑18389	Resolved a problem where multiple file names were incorrectly displayed for the same transaction in alert details.
NEO-18374	Fixed an issue where changes to referenced Endpoint Application Groups in Policy Elements did not trigger a profile update.
NEO-18370	DLPaaS now supports local users for source-user-based policy criteria.
NEO-18330	Incident CSV exports now include AM/PM time indicators
NEO-18317	Agent downloads now function properly in Cloud WEB portal
NEO-18273	Email domain validation now accepts valid domain formats correctly
NEO-18248	Forensic data now displays correctly when processing multiple simultaneous alerts
NEO-18199	Cloud portal no longer incorrectly reports missing forensic data
NEO-17630	Source is not populated properly in email notifications
NEO-17273	Email address is displayed in the incident instead of the user full name
NEO-16859	Agents can now be removed from deleted tenants
NEO-16580	Email Settings: Certificate configurations now persist correctly after loading
NEO-16785	File types can now be successfully removed from File Types Classifier lists.
NEO-16705	Provided a tool to remove Endpoints when DLP tenant is unavailable or deleted.
NEO-16670	Fixed an issue where Forensics and Incident Management were incorrectly unavailable for customers without endpoint DLP licenses, and resolved an SSO sign-in error message.
NEO-16650	Removed unnecessary API calls causing errors when a specific license is missing.
NEO-16624	Imported users can now be successfully removed by administrators.
NEO-16016	Fixed an issue where forensics were not available for incidents that were caused by a rule that is already deleted.
NEO-16580	Added visual confirmation when email settings certificates are successfully uploaded.
NEO-16072	Incident Management Workflows: Resolved multiple issues related to the Status field, including missing CSV export data and user interface display problems.
NEO-14760	Profile \| General \| Endpoint Connectivity to Forcepoint: Proxy settings changes affect all profiles, not just the current profile.

Table 2. Forcepoint Data Security Cloud | DLP Known Issues
Key ID	Description
NEO‑18414	Match count display: Cloud DLP now displays either the number of unique matches or the total number of matches, depending on the policy configuration. The displayed value aligns with whether the threshold is set by unique or total matches.
NEO-14509	Profile Management change from Cloud to On-Premise requires endpoint restart to take effect.
NEO-14381	If you work with multiple tenants, sign out of one tenant before accessing another. Closing the browser without signing out may cause log in issues when trying to sign to other tenants.
NEO-14165	It is currently possible to download the evidence file. Downloading attachments separately is not supported yet.
NEO-14124	Microsoft MIP setting is disabled until it is properly supported by the agent.
NEO-13158	It is currently not possible to use OUs or Computers from the Active Directory as resources since the there is no manual import option and the API with the Active Directory is not available yet.
NEO-12931	Some actions available in the email channel are supported only with the Heritage Forcepoint Web Security solution. If you use the Forcepoint Cloud Email, then only the "Permit" or "Quarantine" (block) actions are supported.
NEO-10643	Mapping violation triggers to classifiers is currently not supported. Violation triggers are currently mapped to files and rules.
NEO-10589	Investigation - Alerts: In case more than one rule is matched, the more severe action plan is taken (as required), but the severity displayed in the alerts screen is the severity of the lower severity matched rule.
NEO-9836	Audit Log: When deleting multiple policies, only part of the required information about the changes is displayed in the audit log.
DLP-25904	Classifier errors out when switching from SaaS to On-prem and On-prem to SaaS.
DLP-24200	Classifier: When text that contains sensitive data is UTF encoded, the respective DLP Policy is not enforced.
DLP-23462	Agent Install: After first reboot, the DLP service takes 25% of the CPU usage. The problem is resolved after the second reboot.
IP-611	Forensic data is currently supported for DPS channels (Cloud Email, Online WEB, CASB). Forensic data is not currently supported for endpoint channels.