Bypassing endpoint clients

It is possible to temporarily disable the endpoint client software on a user’s computer. Disabling the endpoint software means that no content traffic on that endpoint is analyzed, and if there is a policy breach, content is not blocked.

To disable the endpoint client software:

Steps

  1. Instruct the user on the endpoint to open the Forcepoint DLP Endpoint application and click Disable.
  2. Have the user provide the bypass ID that appears in a dialog box.
  3. In the Data Security module of the Security Manager, go to the Main > Status > Endpoint Status page.
  4. Select the endpoint client to disable.
  5. Click Bypass Endpoint.
  6. In the Bypass Endpoint window, enter the bypass ID supplied by the end user.
  7. Use the Activate bypass options to:
    • Select a specific amount of time, in minutes (5, 15, or 30) or hours (1, 2, 5, 10, or 24)
    • Set a specific end date and time for the bypass period

      This option also allows administrators to specify a time zone.

  8. Click Generate Code. A bypass code is displayed.
  9. Send the bypass code to the user. It is applicable only to his or her endpoint client instance.
  10. Tell the user to type the code into the dialog box from step 2 and click Enter.

Next steps

If the user is in stealth mode, this entire procedure can be done via the command line.

It is possible to customize or choose another language for the bypass message that appears on the client. See Customizing Forcepoint DLP Endpoint client messages for more details.