Help Center

Third-party software Contact us

Known issues and limitations

Be aware that DataSecurity Plus has some known issues and limitations, as noted below.

General

  • The agent installs in the default location when it is managed from the UI.

File Audit

  • Detailed DACL/SACL permissions are not reported for file servers.
  • Files with a size of 0KB (empty files) are not audited.
  • Files/folders moved from one drive to another are reported on with Delete and Create events. 
  • The source of an event is not reported if the file server is running Windows Server 2003.
  • System process activities are not audited.
  • Read events performed locally on a notepad will not be audited.

File Analysis

  • In File Analysis reports, the junk file count is the sum of the stale, duplicate, and non-business files. Files are counted twice if they're both stale and duplicate.
  • The Full Control report only lists files providing users with explicit full control permissions. However, the Effective Permissions report lists files with inherited full control permissions as well.

Endpoint DLP

  • The Printer Auditing Report audits events only on printers directly connected to endpoints.
  • DataSecurity Plus audits only shared folders and system folders.
  • When there are multiple paste actions in the same location from a single copy action, DataSecurity Plus only lists the copy source for at most two paste actions.
  • The copy source cannot be obtained for files located inside a copied folder.
  • The copy source cannot be detected for actions initiated by processes other than Explorer.exe unless the process uses the clipboard to paste objects.
  • Excessive file copy events can be curbed by adding noncritical process names to the ExcludeConf.conf file in the agent.
  • When multiple files or folders are selected and copied and any of them violates a configured policy, all the copies will be blocked. DataSecurity Plus will only report one event with the blocked_copy_count value, showing the number of files or folders copied together.
  • The copy source may not be available for paste events that are not completed before the next addition is made to the clipboard.
  • If a file paste event is performed by accessing the client via network shares not monitored by DataSecurity Plus, the copy source cannot be identified.
  • No other file copy events will be audited when a mass copy event is undergoing validation against the Clipboard Control policy. The processing time for 1,000 events is up to one second, and the processing time for 10,000 events is up to one minute. This depends on the number of profiles configured since each copy event has to be validated against each configured profile.
  • Paste actions associated with rapid copy-and-paste actions cannot be completed when clipboard actions are being validated.
  • File classification values cannot be read for shares in un-configured domains due to permission unavailability.

Data Risk Assessment

  • DataSecurity Plus cannot scan password-protected files.
  • DataSecurity Plus audits only shared folders.
  • In a data discovery scan, the scannable file size is proportional to the heap size and varies based on the file types scanned. Here's a breakdown of the scannable file size per 1GB of heap size for various file types:
  • File type Scannable file size (1 GB heap size)
    XLSX, XLTX, DOCX, XLSM, XLTM, XLAM, XLSB, TAR 300MB
    PDF, FDF, XLS, XLT, XLA, DOC, DOT 250MB
    ZIP, 7Z, GZ, TGZ, -GZ, GTAR, USTAR, Z, ZOO, RAR, XZ, PKG, BIN, DMS 150MB
    BPM, Audio Files, MP4A, M4A, M4B, MPGA, MP2, MP2A, MP3, M2A, M3A, OGA, OPUS, SPX Not scanned

Don't see what you're looking for?

  • Visit our community

    Post your questions in the forum.

     
  • Request additional resources

    Send us your requirements.