There is a way to use custom attributes as variables in an email response rule. This function is not well-documented, but it is available. The way to do it is as follows:
Note: To add a gray status bar at the bottom of the I.E. Window, Select "View from the Internet Explorer toolbar menu and make sure "Status Bar" is checked.
1. Log on to Symantec Data Loss Prevention as an administrator.
2. Go to an incident page.
3. For each custom attribute that you would like to add to the notification email, mouse over it or left click on it to reveal its properties. The properties may show up in a bar at the bottom of the screen or in a pop-up box. You are looking for the number of the custom attribute. The attribute numbers may appear in parentheses. For example, FirstName may reveal ("24") and LastName may reveal ("25"). Copy each attribute name and corresponding number for all the custom attributes that will be added to the notification email.
4. Under Policy, navigate to Response Rules, add an email notification response rule, and set up the email response. Wherever the custom attribute should appear, enter $ATTRIBUTE_<attribute number>$. For example, using the custom attributes FirstName and LastName, the email salutation in the rule email would appear as follows:
Dear $ATTRIBUTE_24$ $ATTRIBUTE_25$,
which would yield Dear Joe Smith in the email notification to Joe Smith, if Joe Smith was the policy violator.
5. Please note that deletion of any of the custom attributes used in the email notifications, or problems with the initial attribute lookup, will prevent email notifications from working properly.
|