000033567 - How to include username in Endpoint Incident Generation - Notify User's Manager in RSA DLP 9.6

Document created by RSA Customer Support Employee on Jul 19, 2016Last modified by RSA Customer Support on Jun 26, 2018
Version 6Show Document
  • View in full screen mode

Article Content

Article Number000033567
Applies To
RSA Product Set:  RSA DLP
   RSA Product/Service Type: Enterprise Manager/Endpoint
   RSA Version/Condition: 9.6SP2 P1,P2,P3,P4&P5
   Platform: Windows Server 2008R2/2012
Issue- For RSA DLP 9.6SP2 Patch 1 up till Patch 5 release.
- How to include "username" of an Endpoint user who committed DLP policy-violation in  [Endpoint Incident Generation - Notify User's Manager].
 
Resolution-  Extract two .class  files in the attached zip file and place them under:

~:\Program Files (x86)\RSA\Enterprise Manager\webapps\root\WEB-INF\classes\com\tablus\tem\notification



- On the EM GUI, go to  Notifications > Endpoint Incident Generation - Notify User's Manager and add the attribute  %user_name%.
- Restart the RSA DLP Enterprise Manager service. 
- Now the user's manager [as configured in the user's  "Organization" tab on his AD properties] should receive a notification about the committed violation with his subordinate username. 

Attachments

Outcomes