|
|
|
If you want your users to install CA DLP themselves by running the client installation wizard, you can pre-configure setup.exe to prevent anyone from installing a standalone version.
This is because standalone installations represent potential security loopholes. For example, if a user accidentally installs CA DLP in standalone mode, that user’s policy cannot be edited or enforced by your administrators. In the absence of normal CA DLP control triggers, this could mean the user is able to send non-compliant e‑mails that, whether deliberate or not, expose your organization to the risk of a regulatory violation.
To disallow standalone installations, edit the setup.ini file used by setup.exe to include this line:
CmdNew=WGNDISALLOWSTANDALONE=1 /i
This disables the Standalone Mode option in the Connectivity screen of the installation wizard. For example, if your users run setup.exe from a network location, you could provide a read-only version of setup.ini that includes this line, forcing users to install their client machine in ‘Enterprise Mode’.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |