Plugins

For excel files:

• Max numbers of rows & columns Excel files: This setting determines the maximum number of rows and columns that the agent will scan to extract text and send it to the back end for additional analysis.

  It is important to note that this process occurs for every sheet, which can consume significant resources. To enhance performance, consider reducing this value.

This pop-up will no longer appear if enabled.

Suggestions can still be seen by clicking the classification button.

For example if mycompany.domain.com is whitelisted for Restricted tagset, a user not belonging to it will see the selected tagset grayed-out (see screenshot above).

Notice that the field legend says ‘You can use both users (user@domain.com) or domains (domain.com) when adding new items to this list’. To get these information, you can go to the Command Prompt and run whoami. This command will return the machinename\username value.

Then, you can simply right-click on 'This PC' and select 'Properties'. Under the 'Full device name', you will find the domain to which the machine belongs.

Lastly, we can enter username@domain or domain to whitelist.

This option enables re-classifying files with a lower level of classification. The process involves opening a file, making edits, classifying it, saving the changes, and then closing it.

Upon reopening the file, lower levels of classification will be enabled or grayed out if checked or unchecked, respectively.

Internal-classified file, with the option to lower distribution unchecked. Note that the "External" classification level is currently grayed out.

• Ignore: If the user doesn't classify the file, there will be no pop-up upon saving (or printing), only logging activity will occur.
• Warn: When the user does not classify the file and attempts to save (or print), a warning pop-up will appear. It provides them with the choice to classify ('SET MY OWN') or proceed without classifying ('SAVE ANYWAY').

Typical warning pop-up window when SAVING, providing the user with the option to set their own classification by clicking on a designated button, or to continue without classifying by selecting 'SAVE ANYWAY'.

Typical warning pop-up window when PRINTING, providing the user with the option to set their own classification by clicking on a designated button, or to continue without classifying by selecting ‘SAVE ANYWAY’.

if the user doesn’t classify the file, upon saving (or printing) a pop up will be shown, forcing them to classify ('SET MY OWN’).

Classic force pop up window upon PRINTING. Forces the user to classify.

As it was mentioned before, ML suggestions always come with a confidence value. This option allows the agent to ignore, warn or force user to select the suggested classification tag or a higher one.

• Ignore: when receiving a suggestion, users will have the option to select a lower classification tag than the suggested one.
• Warn: when receiving a suggestion, users will be warned when selecting a lower classification tag than the suggested one.

Here ML suggestion was General Business, but document was manually classified as Public (lower level). Upon SAVING, this warning pop up will appear

The threshold percentage indicates the minimum confidence required for these triggers. This means that if the ML suggestion's confidence level is lower than the set threshold, no warning or enforcement will occur.

This feature enables users to automatically classify items based on machine learning (ML) suggestions. When the confidence level of an ML suggestion exceeds the chosen threshold, the selected classification, distribution, or compliance will be applied without manual intervention.

If checked, the user will see the ‘Visual Label Options’ popup window and will be able to configure them on each SAVE or PRINT trigger.

If un-checked, visual markings will be applied to all pages. Pop-ups will only be shown in the cases where user input is required to decide on ambiguity between the config and the current document.

The popup is slightly different depending on if Word, Excel or PowerPoint is being used.

Notice there are no pop-ups in Outlook as there is no concept of title pages or different header/footer types (floating/fixed).

Word

Word Visual Label Options Pop-up

• Header/Footer Type:
  • Here, the user can choose the type of header and footer they wish to apply. The options for are:
    • Fixed - Adds the header/footer text to the standard text area
    • Floating - Creates a text box within the header/footer area. This avoids any conflicts with existing headers/footers and allows for more flexible placement (i.e. typically to place the marking at the very top/bottom of the page).

NOTE: The actual alignment (left corner, right corner, centre) is determined by the text-align style attribute from the header/footer configuration.

• Page Options - 3 choices: Title Page Only, All Pages, All Pages Except Title Page
• Threshold: If the number of pages in the document is greater than or equal to the threshold only then visual labels will be applied to the Title Page Only or All Pages Except Title Page.

Excel

Excel Visual Label Options Pop-up

PowerPoint

PowerPoint Visual Label Options Pop-up

For more information on this topic, please refer to this article: Agent Header Footer Details

This will set the chosen option by default without prompting the Visual Label Options pop-up.

Again, the options are slightly different depending on if Word, Excel or PowerPoint is being used.

Word

• Page Options - 3 choices: Title Page Only, All Pages, All Pages Except Title Page
• Threshold: If the number of pages in the document is greater than or equal to the threshold only then visual labels will be applied to the Title Page Only or All Pages Except Title Page.

Excel

• Page Options - 2 choices: All Sheets, Sheet range.

Note: The chosen numbers do not refer to the names of the sheets in Excel (“Sheet1”, “Sheet3”, etc) as these are re-nameable placeholder names. They refer to sheets counting from left to right.

• To use this, please use the fromSheet and/or toSheet fields in Excel configuration. If excluded from config or both set to 0, markings will be applied to all sheets.

PowerPoint

• Page Options - 3 choices: All Slides, Title slide only, Slide range
• Threshold: If the number of pages in the document is greater than or equal to the threshold only then visual labels will be applied to the Title Page Only or All Pages Except Title Page.

For more information on this topic, please refer to this article: Agent Header Footer Details

If this option is selected it will apply the chosen option on Headers and Footers.

Before going through the available options, a clarification on what this implies. This option will act over the visual markings on the selected header/footer type (refer to the ‘Enforce Header and Footer type’ section).

Available options are:

1. Overwrite: the existing header or footer will be deleted, and the new one will be written.
2. Append: the new header or footer will be added after the existing one.

Example of Append behavior over an existing Forcepoint header.

Example of Append behavior over an existing Forcepoint footer.

NOTE: For FIXED visual markings, If there is an existing Header/Footer prior to classifying and Overwrite option is selected, upon manual classification or trigger (print/save), existing visual marking will be overwritten.

Example of existing header being overwritten.

If this option is unchecked (no enforce), and in the case where the document already has a “fixed” header/footer and the user chooses this option in the Visual Label Options pop up, they will be asked if they wish to append the marking to the existing text or overwrite it. This isn’t shown if selected “Floating” is selected.

For more information please check this article Agent Header Footer Details

In this section the user can insert the content of visual markings. Text should be written in HTML language, please refer to this article for more information.

Agent: Guide for writing Visual Labels

Variables

As highlighted in the article, a 'classification' variable is utilized. Additionally, there are several others that can also be employed. Here's a list of these variables:

• classification - shows classification output including aliases
• classification_raw - shows classification output, doesn’t include aliases
• classification_guid - unique id generated based on tagset id and tag name
• distribution - shows distribution output including aliases
• distribution_raw - shows distribution output, doesn’t include aliases
• distribution_guid - unique id generated based on tagset id and tag name
• compliance - shows compliance output including aliases
• compliance_raw - shows compliance output, doesn’t include aliases
• compliance_guid - unique id generated based on tagset id and tag name
• datetime - timestamp for classification, with this format "yyyy-MM-dd\\THH:mm:ss\\Z"
• email - email of the current user (only works when outlook plugin is installed)
• user - current user name
• machineid - device name
• fileid - Id assigned for the classified file

This is an HTML header or footer example that uses all of them.

<span>classification - {classification} | classification_raw {classification_raw} | classification_guid {classification_guid} | distribution {distribution} | distribution_raw {distribution_raw} | distribution_guid {distribution_guid} | compliance {compliance} | compliance_raw {compliance_raw} | compliance_guid {compliance_guid} | datetime {datetime} | email {email} | user {user} | machineid {machineid} | fileid {fileid}</span>

And this is the output for a default configuration, Public - GDPR/PII - Internal classification:

classification - Public | classification_raw Public | classification_guid 13d38db9-2856-70ed-377c-2844870099bd | distribution Internal | distribution_raw Internal | distribution_guid 623852d7-e653-49e5-892a-1a607b4e6c4a | compliance GDPR/PII | compliance_raw GDPR/PII | compliance_guid d6046d4c-e562-c94a-a2e1-0665cd09a654 | datetime 2024-04-10T10:59:53Z | email  | user Administrator | machineid MARCOS3 | fileid dd8543fc-0a77-4374-887d-5cc03054030a