Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
871
Views
0
Helpful
1
Replies

DLP messaging tracking - build 7.1.2-020

chmeehan0421
Level 1
Level 1

‎01-14-2011 06:25 AM

I have had DLP running in passive mode now for about a week and think  I may have either found a bug or am missing something and it is a limitation for a  reason.

While in message tracking, if I leave all fields blank, only change the time range to past week. Then I select advance, and check off DLP violations. In 

the DLP violations if I choose a known DLP template, say Payment Card Industry Data Security Standard (PCI-DSS) and then click search I get no results,

when in fact the DLP incidents summary page shows me 6 in the same time range. Also, if I do not choose a policy to query and I only check the DLP violations check box, I do get results on ALL violations as expected. My build is 7.1.2-020. Can someone else on the same build test their box if running DLP?

Thanks,

Chris

Labels:
0 Helpful
1 Reply 1

Christopher Smith
Level 4
Level 4

‎01-20-2011 09:41 AM

Chris,

I think this is a good candidate for a ticket with Customer Support. Not sure if this is a defect or not but due to the nature of DLP and the senario your describing we would probably need to go over this in more detail over the phone, and possible get access to the appliance via remote access.

Christopher C Smith

CSE
Cisco IronPort Customer Support 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents