I will start with we have a Symantec DLP server and I have minimal experience with it and PS helped us set it up many years ago.
Been assigned a project by management and asked to have it tested and ready to implement by end of next week. Have read the Admin guides and articles but not sure exactly how to set this up. Part of the challenge is we have to write up a Change Request ticket outlining exact steps for setup and not sure what those are [chicken and egg kind of thing]
This is our current setup and have questions that I am sure are easily answered by someone with more experience with the setup.
- We have two DLP servers: 1. DLP1 - Enforce/Oracle Server - Network Discovery Server 2. DLP2 - Platform Server & Endpoint Server [Endpoint agents configured to contact DLP2]
- The SMTP Server is Microsoft Server SMTP running on SMTP1 [our SMTP Relay]
Questions for setup of Network Prevent for Email
- Do we need to install and endpoint agent on SMTP1? If yes what settings are needed on the endpoint agent?
- Then under System - Servers and Detectors - Add a Server - Network Prevent for Email - Would the server be DLP2 or SMTP1?
- For #2 without doing #1 I did point to SMTP1 and state stayed as unknow.
- Also tried pointing to DLP1 and error "This detection server has the same host as Network Discover. Two detection servers cannot have the same host"