Create a file matching rule

If you use role-based administration:

  • You must have the Data control customization right to create or edit data control rules.
  • You must have the Policy setting - data control right to set up data control policies.
  • You cannot edit a policy if it is applied outside your active sub-estate.

For more information, see Managing roles and sub-estates.

For an overview of file matching rules, see About data control rules.

To create a file matching rule and add it to a data control policy:

  1. Check which data control policy is used by the group or groups of computers you want to configure.
    1. Alternatively, you can create a rule from the Tools menu and add it to a policy or policies later. On the Tools menu, point to Manage Data Control, and then click Data control rules and perform steps 4 to 10.
  2. In the Policies pane, double-click Data control. Then double-click the policy you want to change.
  3. In the Data control policy dialog box, on the Policy Rules tab, make sure the Enable data control scanning check box is selected and click Manage Rules.
  4. In the Data Control Rule Management dialog box, click the Add File Matching Rule button.
  5. In the Create a File Matching Rule dialog box, under Rule name, type a name for the rule.
  6. Under Rule description (optional), enter the rule's description, if you wish.
  7. Under Select the rule's conditions, select conditions for the rule.

    The destination condition is preselected and must be included in the rule.

    By default, all file types are scanned. If you want to scan only certain file types, select Where the file type is. You can then set up this condition as described in step 10.

  8. Under Select the action to take if the rule is matched, select the action.
  9. If you want to exclude some files from data control scanning, under Select files to exclude, select the Where file name matches or Where the file type is check box.
  10. Under Rule content, click each underlined value and set up the rule's conditions.
    For example, if you click Select destination, the Match Destination Type Condition dialog box opens, where you can select the devices and/or applications to which you want to restrict the transfer of data.
    1. Select or enter conditions for each underlined value.

      File matching rule
    2. Click OK.
    The new rule appears in the Data Control Rule Management dialog box.
  11. To add the rule to the policy, select the check box next to the rule's name and click OK.
    The rule is added to the data control policy.

You can set up alerts and messages that will be sent to the user when a rule in the data control policy is matched. See Set up data control alerts and messages.