Set up data control alerts and messages
If you use role-based administration:
- You must have the Policy setting - data control right to configure a data control policy.
- You cannot edit a policy if it is applied outside your active sub-estate.
For more information, see Managing roles and sub-estates.
Sophos Enterprise Console uses events and messages to report when the transfer of sensitive data is detected or blocked.
For information about data control policies and events, see Data control policy.
When data control is enabled, the following events and messages are logged or displayed by default:
- Data control events are logged on the workstation.
- Data control events are sent to Sophos Enterprise Console and can be viewed in the
Data Control - Event Viewer. (To open the event
viewer, on the Events menu, click Data Control
Events.) Note Each computer can send to Enterprise Console a maximum of 50 data control events per hour.
- The number of computers with data control events over a specified threshold within the last seven days is displayed on the Dashboard.
- Desktop messages are displayed on the workstation.
You can also configure Sophos Enterprise Console to send the following messages:
Email alerts |
An email message is sent to the recipients that you specify. |
SNMP messages |
An SNMP message is sent to the recipients specified in your anti-virus and HIPS policy settings. |
To set up data control messaging: