Manage Global Policy File Exclusions
To avoid scanning every single file and directory on the computer when running a data-based scan (PAN, PCI and PAN, Data Discovery and Data Breach Risk) Global Policy Exclusions can be set up.
- Manage Exclusions through Policies
- Add Custom Exclusions from the Data Breach Risk Report
- General Exclusion Rules
Manage Exclusions through Policies
- Go to Settings > Risk Intelligence > Policy
-
Click New to create a policy or choose to Edit an existing Policy
- Configure the "Global Policy File Exclusions" under General
- To add a new exclusion to the list click Add enter the exclusion string then Save
- To edit an exclusion, highlight the exclusion in the list. Click on Edit update the exclusion string then Save
- To delete an exclusion, highlight the exclusion in the list then click Remove
- Once set up to your satisfaction, click Save to apply
All future scans will now exclude the specified files and directory strings.
Exclusions added to the Global Policy apply across your Risk Intelligence account. They are not policy specific.
Add Custom Exclusions from the Data Breach Risk Report
In addition to the Global Policy File Exclusions dialog, exclusions may be added for discovered files when viewing the Data Breach Risk Report in the Risk Intelligence dashboard.
- Navigate to the Unprotected Data Details section in the data-based scan report (PAN, PCI and PAN, Data Discovery and Data Breach Risk)
- Click the Expand to list all discovered files containing unprotected data along with their location.
- To add an exclusion for a discovered file,
- To add an exclusion based on a current file, click the expand button against the
- Expand to list all files containing unprotected data along with their location
- Expand all rows to view all of the information they contain
- Click the expand (>) against an individual entry
- Edit Exclusion List to add any of these files to the exclusion list
- View Global Exclusion List to see the current list (these are edited in a Policy's Account Settings)
- Select a discovered file and click the Exclude button against the entry
- Where a file was added in error you can either Remove Exclusion or Cancel Changes to exit out of the dialog.
- Save Changes to apply
General Exclusion Rules
The following rules apply to custom exclusions:
- Exclusions must use forward slashes in paths
- Exclusions are case sensitive
- Supported wildcards are *,** and *.*
Exclusion Type |
Notes |
Entered Exclusion |
Excludes (matches) |
Does not exclude (does not match) |
File pattern with immediate parent directory |
Excludes all files with a specific parent directory |
**/private/*.* |
c:\private\file.xml c:\temp\private\file.xml /Volumes/private/file.xml |
c:\private\temp\file.xml c:\temp\private\temp\file.xml /Volumes/private/temp/file.xml |
Directory with wildcard exclusion |
Excludes all files with a specific parent directory starting with the entered name |
**/PRIVATE*/*.* |
c:\PRIVATE_1\file.xml c:\temp\PRIVATE_2\file.xml /Volumes/PRIVATE_3/file.xml |
c:\PRIVATE_1\temp\file.xml c:\temp\PRIVATE_2\temp\file.xml /Volumes/PRIVATE_3/temp/file.xml |
Directory and subdirectory exclusion |
Excludes all files and directories in a directory. |
**/temp/** |
c:\temp\folder\sub\file.xml c:\folder\sub\directory\temp\sub1\sub2\file.txt /Volumes/directory/temp/sub/file.xml |
c:\temp1\folder\sub\file.xml c:\folder\sub\directory\temp1\sub1\sub2\file.txt /Volumes/directory/temp1/sub/file.xml |
Single file |
Excludes the specified file |
c:/temp/text.txt |
C:\temp\text.txt |
- |
Global file exclusion |
Exclude all files with the specified extension. |
*.txt |
all .txt files |
- |
What do you want to do?