|Applies To||RSA Data Loss Prevention (DLP)|
|Issue||How Policy is processed in RSA Data Loss Prevention.|
Inside the same Policy Violation rule everything is anded together [protocol, transmission attributes, file attributes and devices are anded together]
Transmission attributes are anded together.
Rules itself are checked from the up to down so you have to put specific rules up and general rules down.
If certain content matches more than one policy, the order of the policy in the EM is the one that determines the course of action of the RSA DLP.
|Legacy Article ID||a65058|