Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
Known issues and limitations
Be aware that DataSecurity Plus has some known issues and limitations, as noted below.
General
- The agent installs in the default location when it is managed from the UI.
File Audit
- Detailed DACL/SACL permissions are not reported for file servers.
- Files with a size of 0KB (empty files) are not audited.
- Files/folders moved from one drive to another are reported on with Delete and Create events.
- The source of an event is not reported if the file server is running Windows Server 2003.
- System process activities are not audited.
- Read events performed locally on a notepad will not be audited.
File Analysis
- In File Analysis reports, the junk file count is the sum of the stale, duplicate, and non-business files. Files are counted twice if they're both stale and duplicate.
- The Full Control report only lists files providing users with explicit full control permissions. However, the Effective Permissions report lists files with inherited full control permissions as well.
Endpoint DLP
- The Printer Auditing Report audits events only on printers directly connected to endpoints.
- DataSecurity Plus audits only shared folders and system folders.
- When there are multiple paste actions in the same location from a single copy action, DataSecurity Plus only lists the copy source for at most two paste actions.
- The copy source cannot be obtained for files located inside a copied folder.
- The copy source cannot be detected for actions initiated by processes other than Explorer.exe unless the process uses the clipboard to paste objects.
- Excessive file copy events can be curbed by adding noncritical process names to the ExcludeConf.conf file in the agent.
- When multiple files or folders are selected and copied and any of them violates a configured policy, all the copies will be blocked. DataSecurity Plus will only report one event with the blocked_copy_count value, showing the number of files or folders copied together.
- The copy source may not be available for paste events that are not completed before the next addition is made to the clipboard.
- If a file paste event is performed by accessing the client via network shares not monitored by DataSecurity Plus, the copy source cannot be identified.
- Any number of copy events below the bulk copy limit will be individually validated against all configured clipboard control profiles. No other file copy events will be audited while the validation is ongoing. For example, if the limit is set to 1,000, validating 999 events may take up to one second, and if additional files are copied during this one second period, they will not be audited.
- Paste actions associated with rapid copy-and-paste actions cannot be completed when clipboard actions are being validated.
- File classification values cannot be read for shares in un-configured domains due to permission unavailability.
Data Risk Assessment
- DataSecurity Plus cannot scan password-protected files.
- DataSecurity Plus audits only shared folders.
- In a data discovery scan, the scannable file size is proportional to the heap size and varies based on the file types scanned. Here's a breakdown of the scannable file size per 1GB of heap size for various file types:
File type | Scannable file size (1 GB heap size) |
XLSX, XLTX, DOCX, XLSM, XLTM, XLAM, XLSB, TAR | 300MB |
PDF, FDF, XLS, XLT, XLA, DOC, DOT | 250MB |
ZIP, 7Z, GZ, TGZ, -GZ, GTAR, USTAR, Z, ZOO, RAR, XZ, PKG, BIN, DMS | 150MB |
BPM, Audio Files, MP4A, M4A, M4B, MPGA, MP2, MP2A, MP3, M2A, M3A, OGA, OPUS, SPX | Not scanned |