Setting field encryption
Field level encryption in any app requires a couple of different components to be setup within your Forcepoint ONE SSE tenant.
First you will need to add a new codebook for the encryption setup, then add a custom app or a new instance of your custom app where you are moving data to, and then finally add and configure the API endpoint. Before you start you must setup your Key Management key store and key vault ahead of time—either use Forcepoint ONE SSE's default keystore or integrate with your own KMS/HSM. To learn how to do that, refer to Encrypting data.