Specifying File Names and Types

Policy Guide › Protecting Files Being Copied › Applying Policy to Files Being Copied › Configure the User Policy › Specifying File Names and Types

Specifying File Names and Types

Each Data At Rest and Data In Motion trigger includes two types of file lists:

Top Level File Names. These settings let you check for names of 'normal' files or zip files.
Individual or Embedded File Names. These settings can detect named files contained within a zip file or embedded in a master file.

Both types of setting can detect specific files or types of file, including scanned files, files being copied to a removable device or network location, imported files and files entering or leaving the corporate network. Together, these settings allow you to specify different handling for unauthorized files depending on where the file was found.

Included, Excluded and Ignored file lists

For both the Top Level File Names setting and Individual or Embedded File Names setting, you can use an Included list or an Excluded list. For Top Level File Names settings, you can also use an Ignored list.

Example File Names

For example, you can specify:

'*' to detect all files in a folder.
'*.docx' to detect all Microsoft Word files.
'%allarchives%' to search all archive file types. The %allarchive% variable refers to file types listed in the Archive File Extensions setting (see below).
A list of specific .zip files. (This is only appropriate for Top Level File Names settings.)

Example: Conditional File Handling

If the CFSA detects the file Q1targets.docx saved in a public folder on your network, you may want to simply delete the file. But if it is found inside a zip file that contains other important data, you may prefer to simply move the zip file to safe location. To set this up in the user policy, you use two Data At Rest triggers and two control actions:

The first trigger includes Q1targets.docx in the Top Level File Names setting and invokes a DoD Delete control action.
The second trigger includes '*.zip' in the Top Level File Names setting and Q1targets.docx in the Individual or Embedded File Names setting. It invokes a 'Copy and Delete' control action, effectively moving the parent zip file to a new location.

Defining archive files

You can specify which file types CA DataMinder will recognize as 'archive' files. To do this, edit Archive File Extensions setting in the user policy. Find this setting in the \System Settings folder. Specify the archive file types, such as *.zip, *.pst, or *.gz.

More information:

Client File System Agent Settings

Files Entering or Leaving the Corporate Network