Configure DLP Settings

Overview

Configure Storage and Email Notification Settings for Data Leak Protection in Zaperon.

DLP Settings in Zaperon allow administrators to configure two critical components that support Email DLP policy enforcement. Storage Configuration defines where flagged files and intercepted email content are saved, with support for AWS S3 Bucket and OneDrive as destination datastores. Email Configuration defines the SMTP relay URL used for email notification and file delivery updates when a DLP policy is triggered.

Both configurations work together to ensure that when an Email DLP policy detects sensitive content, the intercepted data is securely stored in your designated datastore and the relevant notifications are delivered through your configured email relay.

What is DLP Settings Configuration in Zaperon?

DLP Settings configuration is the process of connecting Zaperon's Data Leak Protection engine to your organization's storage infrastructure and email notification system. Without these settings configured, Email DLP policies cannot store intercepted content or deliver notifications when policy conditions are matched.

Zaperon currently supports two storage datastore options for DLP file storage, AWS S3 Bucket and OneDrive, giving organizations the flexibility to use their existing cloud storage infrastructure as the secure destination for DLP-intercepted content.

Why Configure DLP Settings in Zaperon?

Enable Email DLP policies to function correctly by providing a secure destination for intercepted email content and attachments.
Store flagged DLP content in your organization's existing cloud storage infrastructure using AWS S3 Bucket or OneDrive.
Configure email notification delivery through your SMTP relay to ensure administrators and security teams are alerted when DLP policy conditions are triggered.
Maintain full control over where sensitive intercepted content is stored by connecting Zaperon to your own managed datastore.
Support compliance and data governance requirements by ensuring that intercepted content is stored securely in an organization-controlled destination.

Steps to Configure DLP Settings

A. Configuration in Zaperon Dashboard

1. In the Admin Dashboard, Navigate to Data Protection and click on Configure button.

Note: You can Configure 2 types of datastore (AWS S3 or OneDrive) in Zaperon for DLP sotrage.

2. For AWS S3 Bucket : In Storage Configuration tab select datastore as AWS S3 option and enter the details.

3. For OneDrive : In Storage Configuration tab select datastore as Onedrive option and enter the details. Follow instructions in section C.

4. Enter relay URL and Click on Save. Follow instructions in section D of this document to obtain Relay URL.

5. You'll see a confirmation dialog will appear to confirm the DLP Configuration Settings has been saved successfully.

C. Configuring OneDrive as DLP Storage

1. Open Microsoft Azure Admin Panel. Click on App registration > + New registration.

2. Enter app name and select single tenant only in supported account types dropdown and click on Register.

3. Next copy and paste the Tenant, Client and Client secret ID in Storage Configuration in section A.3.

D. Configuring Email Notifications

1. Open Microsoft 365 Admin center, Navigate to Settings > Domains and select domain.

2. Click on DNS records tab and click first row MX in Microsoft Exchange table. Then copy point to address or value and paste it into Relay URL field of Email Notification settings in section A.4.

Testing and Validation

After configuring DLP Settings:

Trigger a test Email DLP policy event to confirm that intercepted content is being saved to the correct storage destination.
Verify that the stored file appears in the designated AWS S3 bucket folder or OneDrive folder as configured.
Confirm that email notifications are being delivered through the configured SMTP relay when a DLP policy condition is matched.
Check the Data Leak Report to confirm that the DLP event has been recorded with full context.

Summary

Configuring DLP Settings in Zaperon establishes the storage and notification infrastructure required for Email DLP policies to function correctly. By connecting Zaperon to your organization's AWS S3 or OneDrive environment and configuring your SMTP relay for notifications, you ensure that intercepted email content is stored securely, compliance requirements are met, and security teams are alerted in real time when DLP policy conditions are triggered.

Google Sites

Report abuse