Data Protection Settings

Use the Account > Data Protection Settings page to enable and configure the integration with Data Protection Service, part of Forcepoint DLP. With this integration, enterprise data security, including blocking or monitoring data loss, is handled by the Data Protection Service (DPS), rather than the cloud proxies or relays.

The cloud proxies and relays continue to handle all other aspects of processing web and email traffic.

Note: Data Protection Service integration requires an additional license. If you would like further information on integrating with Data Protection Service, contact your account manager.

To monitor and prevent data loss using the Data Protection Service:

Steps

  1. In the Tenant Information section, upload the configuration file provided by Forcepoint in the fulfillment email you received. This file provides the information needed to connect the cloud service to DPS and is the same file used when configuring Data Protection Service in the Data module of the on-premises Forcepoint Security Manager.
    1. Click Browse, then locate and select the file.

      The file name appears in the Configuration file entry.

    2. Click Upload.

      When the upload is successful, the remaining fields are automatically populated.

    The Browse and Upload buttons are not available for users with View Configuration permissions.

  2. Use the Email Defaults section to view how data security is handled in new email policies. DPS fallback behavior is set to Allow by default and cannot be changed.

    DPS fallback behavior is configured as a backup in the event of a DPS timeout or other error. With this behavior set to Allow, all email messages received while DPS is unreachable are delivered. This ensures that emails are not unnecessarily quarantined.

    Navigate to Email > Policy > Policy Name > Data Protection to configure your email policies with the new data security option. See the Data Protection tab for more information.