Not all locations with sensitive content pose a risk, as some may be intended to have such content. For example, a Human Resources folder is likely to contain the Social Security Numbers of company employees as it is the most relevant location for such content. You can tell Egnyte Secure and Govern in advance to permit sensitive content in such locations.
Permit Sensitive Content Locations
For every Egnyte Connect source, you can specify the folder hierarchies that are permitted to contain certain types of sensitive content.
- Go to Settings, select Content Sources from the left pane, and select your cloud content source. In the Permitted Sensitive Content Locations section, click on the gear icon.
- For each policy you enforce, you'll be able to select which folders should be permitted to contain the associated sensitive information. Click on the gear icon in the appropriate section to select the folders.
- Every folder in the dialog has a checkbox next to it, which indicates the permissions for the folder itself to contain sensitive content. For example, the checkbox next to the Accounting folder in the above dialog is checked, implying that the Accounting folder is permitted to directly contain files matching the GLBA policy.
Every folder also contains an icon next to it indicating whether the folder and its sub-folder have mixed permissions for containing sensitive content. In the example below, the FY 2015 folder and some of its sub-folders are permitted to contain GLBA content, while the Test sub-folder is not permitted to directly contain any GLBA content. Therefore the FY 2015 folder and its sub-folders contain mixed permissions for GLBA content. On the other hand, the Private folder and its sub-folders are not permitted to contain any GLBA content.
Note: If a parent folder is selected, all of the sub-folders are automatically selected. If any of the sub-folders were previously not permitted to contain the sensitive content, its settings will be overridden by your latest change to the parent folder.
- Click Save to update the permissions for sensitive content.
- Your permission changes will be reflected immediately in the Sensitive Content tab. For example, if the Payroll folder had a row in the Sensitive Content tab, when you click on its row, you can see in the Details pane that GLBA has been permitted in that sub-folder.
- You can also unpermit sensitive content in just a folder from the Sensitive Content tab and see the change reflected in this dialog. In the above example, if you unpermit the Payroll folder to contain GLBA content from the Sensitive Content tab, the dialog for the GLBA policy will immediately reflect your selection.
- You can click on Manage permitted locations to go back to the Settings page summarizing the permitted folders in the source.