Previous Topic: Enable Policy TriggersNext Topic: Choose a Policy Action

iConsole User GuideEditing PoliciesEditing Policy in the iConsoleEdit the Policy Settings

Edit the Policy Settings

You can edit the individual settings for each policy you want to use. For example, in the Account Number policy you can specify words that, if detected, exempt the email or document and prevent the policy from firing.

To edit policy settings

  1. In the Edit Policy Documents page, find the policy you want to edit.
  2. Double-click the policy to open the Policy page.

    This contains the editable settings for the current policy, organized into separate tabs.

    Common Content tab

    Contains settings applicable to all triggers in this policy.

    Many policies include a Sensitivity setting:

    • Policies with Lowest sensitivity only fire if there is strong evidence that an email or file breaches policy. Set a low sensitivity if you want to reduce false positive alerts,
    • Policies with Highest sensitivity require less evidence that policy has been breached and so fire more readily. Set a high sensitivity if you want to ensure that no incidents are missed.

    Note: In technical terms, Sensitivity settings are based on the MinScore(n) classifier function.

    Data In Motion - Email tab

    Contains trigger settings and the policy action for emails detected by a CA Data Protection email agent or by CA Data Protection Network.

    Data In Motion - Network/Endpoint tab

    Contains Data In Motion trigger settings and policy action for files being printed, copied to a removable device, or detect while passing through the CA Data Protection Network appliance.

    Data At Rest tab

    Contains Data At Rest trigger settings and policy action for files scanned by the FSA or CFSA.

    Web - Endpoint tab

    Contains Web trigger settings and policy action for web activity detected by the Internet Explorer endpoint agent.

  3. Edit the settings as required, then close the Policy page.