Cloud App Security Administration Guide for Office 365

 > Configuring Data Leak Protection Detection Rules
Table of Contents

Configuring Data Leak Protection Detection Rules

To configure Data Leak Protection

  1. Navigate to Configuration > Security App Store.
  2. In the Data Leakage Prevention section, locate the SmartDLP tile.
  3. If the SmartDLP security application is not currently running (as indicated by two vertical white bars in the green circle on the top left of the tile), activate the SmartDLP security application.
  4. Click Configure. The Configure SmartDLP dialog displays.

  5. From the Detected Text Storage Mode list, select what scanned data will be saved and how:

    • Store detected text strings: Detected data is saved and can be displayed on the security events for the forensic process.
    • Obfuscate detected text prior to storage: Detected data is saved and displayed in obfuscated format on the security events. The original data is discarded and cannot be accessed.
    • Do not store detected text: No detected data is saved or displayed on the security events.

  6. From the Minimal Likelihood list, select one of the options:

    • Very Unlikely: It is very unlikely that the data matches the given information type.
    • Unlikely: It is unlikely that the data matches the given information type.
    • Possible: It is possible that the data matches the given information type.
    • Likely: It is likely that the data matches the given information type. It may also depend on the context of the information.
    • Very Likely: It is very likely that the data matches the given information type. It may also depend on the context of the information.

    The Minimal Likelihood is determined by the number of matching elements a result contains. SmartDLP uses a bucketized representation of likelihood intended to indicate how likely it is that the data matches the specified DLP detection rules.

  7. In the Detection Types section, select which predefined DLP rules are you want included for each of the DLP detection categories:
    • PII
    • PHI
    • Financial
    • Encrypted Content
    • Access Control
    • Intellectual Property
    • PCI
    • Resume
    • SOX
    • HIPAA
  8. Click Ok to save your SmartDLP configuration settings.