|Applies To||RSA Product Set: DLP|
RSA Product/Service Type: Enterprise Manager, Endpoint
RSA Version/Condition: 9.6 and above
|Issue||When DLP violations occur at DLP Endpoint, the file in violation is also uploaded along with the event details.|
There is advance configuration is configurable and can control and limit the DLP Endpoint event file size.
The default is 5 MB. No additional violation file(s) is attached to the event zip if the overall size of the event zip exceeds the configured or default limit.
|Resolution||To control the overall size of the event zip. This Advanced Endpoint Configuration / Override Configurations can be changed on DLP Enterprise Manager at Endpoint page|
This example will limit the maximum event zip file to be 3 MB and not add further attachments to events when event zip file go beyond 3 MB