000033023 - How to scan end-users home network-mapped folder in RSA Data Loss Prevention 9.6 and later

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000033023
Applies ToRSA Product Set: RSA DLP
RSA Product/Service Type: Datacenter
RSA Version/Condition: 9.6 SP2
Platform: Windows Server 2008R2/Windows 7
IssueQuestion: Is RSA Data Loss Prevention (DLP) Datacenter Discovery agent capable of scanning end-users home network-mapped folders?
ResolutionBy default, RSA DLP Discovery Agents don't scan and capture a violation of the user "Home" network-mapped folder when "paths to scan" is set to all fixed drives or all drives (fixed and removable). 
It can be configure manually by editing the agent-scan group configuration on EM GUI as following:
  1. Go to Admin > Datacenter > configuration and status > Agent Group > Edit config > Paths to scan
  2. Select "Scan Only" These folders >
  3. Specify the UNC path (example: \\192.168.x.x\home\userA)
  4. Save
NotesBest Practice to configure all your users home network-mapped folders is through using grid-worker scanning  by pointing it to scan the parent home directory for all users on the shared-network file server.