The CFSA can apply policy to local drives that have been added as network drives in a Remote Desktop Connection (RDC) session.
The Windows RDC feature allows users to use local disk drives in a remote session. For example, a user working from home connects to their office workstation using RDC. When the RDC session starts, the user can add their local C drive as a network drive on the remote workstation. This network drive represents a security risk, because the user can drag and drop sensitive files from their workstation onto their local C drive.
From a policy viewpoint, the CFSA handles these RDC network drives in the same way as other network locations. To apply policy to files being copied to this network drive in an RDC session, add one of the following values to the Special Locations List setting:
\\tsclient\C \\tsclient\D \\tsclient\*
These values apply policy to, respectively, the local C drive, local D drive, or all local drives mapped as network drives in an RDC session.
Find the Special Locations List setting in the following folder in the machine policy:
/Client File System Agent/Data in Use Protection/Network Locations folder.
|
Copyright © 2014 CA.
All rights reserved.
|
|