Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
895
Views
0
Helpful
1
Replies

Upgrading RSA DLP Engine

Bighead81
Level 1
Level 1

‎05-20-2014 12:02 PM

By default Cisco do not permit for auto updates for RSA DLP engine.  I have tried through CLI to update but it does not complete the command, doesn't even start. What needs to be done as the dlp engine has never be upgraded, therefore no pre DLP config.

Labels:
0 Helpful
1 Reply 1

Robert Sherwin
Cisco Employee
Cisco Employee

‎05-21-2014 08:28 AM

What version of AsyncOS are you running on your appliance?  Normally - the engine will only update on revision.  This should only change w/ an upgrade to 8.0 - and then you may see a new engine change if running 'dlpupdate'...

Example - from an 8.0.1-108 build:

> version

Current Version
===============
UDI: C170 V04 XXX
Name: C170
Product: Cisco IronPort C170 Messaging Gateway(tm) Appliance
Model: C170
Version: 8.0.1-108
Build Date: 2014-04-22
Install Date: 2014-05-07 09:55:23
Serial #: XXX-YYY
BIOS: 9B1C118A
RAID: 02
RAID Status: OPTIMAL
RAID Type: 1
BMC: 2.03

> dlpstatus

Component                 Version    Last Updated
RSA DLP Engine            3.0.2.31   Never updated

 

You may need to get an upgraded AsyncOS to address if implementing this w/ RSA EM:

CSCun21348 - Rules from RSA Enterprise Management
(EM) Server are not getting applied intermittently, and DLP stops scanning outbound messages. Mail logs do not show any DLP verdicts.

http://www.cisco.com/c/dam/en/us/td/docs/security/esa/esa8-0/release_notes/ESA_8-0-1_HP2_Release_Notes.pdf

-Robert

Cheers,
Robert Sherwin
0 Helpful
Customers Also Viewed These Support Documents