The CA DLP Outlook agent is an Outlook COM add-in. Typically, if users have the necessary permissions, they can disable Outlook add-ins.
To prevent users from disabling the CA DLP Outlook agent, CA DLP automatically and silently re-enables the agent if a user disables it. After deploying the CA DLP Outlook agent, create the following DWORD registry values to control the re-enabling behavior:
Type: REG_DWORD
Data: Specifies how often CA DLP verifies whether the Outlook client agent is disabled in the current session. (A security feature in Outlook can automatically disable certain add-ins). Set this option to 0 to disable monitoring. Specifically, it checks the registry for the wgnemol.dll name and path.
Default: 5 seconds
Type: REG_DWORD
Data: Specifies whether CA DLP should re‑enable the Outlook client agent if it is found to be disabled. If this registry value is set to a non-zero value and the Outlook client agent is found to be disabled, CA DLP re-enables the client agent and writes a Windows application log entry to that effect.
Default: 0 (do not re-enable)
On the machine hosting the Outlook agent, add these two registry values to the following registry key:
HKEY_LOCAL_MACHINE\Software\ComputerAssociates\CA DLP \CurrentVersion\EMail
Or for 32bit Outlook client running on a 64bit OS under the registry key:
HKEY_LOCAL_MACHINE\Software\WOW6432Node\ComputerAssociates\CA DLP \CurrentVersion\EMail
Note: For more information about how to configure the Outlook Agent using EmailClientOptions.mst, see the 'Technical Information, Installation Transforms' section in the Platform Deployment Guide.
|
Copyright © 2012 CA.
All rights reserved.
|
|