Vous êtes sur la page 1sur 14

Lesson 3: Classification

8.0 File Security & Compliance Training Content


Admin
FAM / FFW Administration
Lesson 1: Introduction to FAM / FFW
Lesson 2: Configuration
Lesson 3: Classification
Lesson 4: File Auditing
Lesson 5: Ownership & Rights Management
Lesson 6: File Security
Lesson 7: FAM & FFW Management & Tuning

Lifecycle Step 2: Classify


Data Classification
Automatic

Manage
FAM / FFW

Keywords in
Metadata
Custom
classification
policies

Manual
CIFS browser
Folder-based
inheritance
File types

Why Classify the Data?


Useful for zeroing in on sensitive data
Audit only access to sensitive data
Controls over sensitive data: alert/block unauthorized access
Review and manage user rights to sensitive data
Possible ways to classify unstructured data:
Manually
Automated Scan
Based on meta-data (filename, owner, owner department, etc)
Content based (scan contents for pattern matching strings) - future
Import classification project results
Integrate with DLP vendors results - future
Microsoft File System Info (FSI) - future

Use Case

Data
Classification
+
User Department
awareness
=
file security and
auditing that
maps to
business policy

Data Classification
Manual
Works on files and folders
Can remove classifications (for automatic and manual)
For folders works on the entire sub-tree (inheritance)
In this version, easiest & most common method of classification
Automatic
Only works on files
No out-of-the-box classification rules yet
Meta-data only: filename, owner, owner department
Filename rules uses filename patterns (* and ? wildcards)
Limit is 10,000 classifications by default (can be configured)

File Classification Workflow

File Classification Workflow

Right-click
Menu
Add
Classificatio
n
Remove &
Clear
Details Page
Inheritance

Automatic Scan Steps


1. Create a File Data
Classification Scan
2. Configure Data Type
Rules for desired
categories
Create New and
Edit icons
Global Objects:
Data Type list
*?
File Name
Owner Name
Owner Department

Automatic Scan Steps(continued)


1. Create a File Data
Classification Scan
2. Configure Data Type Rules
for desired categories
3. Apply To
Fetched top-level Service
shares (pre-configuration)

4. Schedule
Run Now
Schedule refresh

Classified File Data: File Explorer


Scan policy runs an active connection
Credentials must be configured
Uses CIFS between the MX and the file server
Shows in Audit records if MX not excluded
Displayed in a file explorer
Double-clicking folders shows their contents

Viewing Classifications
Icon indicates if a folder
contains classified content
Root folders based on top
level shares (not file system)
Hovering over icon shows
data types in sub-tree
Details pane information

Manual Classification
Right-click share
Drop down list:
Classification
Declassification
Clear <all>
Classification
Show Usage
Opens Audit records
with filter on share path
Consider copy and
paste filter to File
criteria instead of
Full Path

Questions?