Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Nutanix server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- Domain configuration
- File server configuration
- Workgroup configuration
- SMB File Server Configuration
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Installation Steps
- Gateway Configuration in Endpoint
- Gateway Cluster Configuration
- Gateway Server Management
- Certificate Authority Configuration
- Two-way SSL configuration
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Regenerating gateway server access key
- Updating gateway server
- Gateway Server Failover
- Load Balancer Configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- File Upload & Download Reports
- Control Policy reports
- General Reports
- Application Insights
- Shadow Domain Insights
- Banned Domain Insights
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Release notes
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Cloud Protection Gateway server failure
- Known issues and limitations
- Known errors and solutions
- Report discrepancy in File Analysis
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
Data classification
Classifying files containing sensitive data under various labels helps enforce appropriate levels of security. The Risk Analysis module can be used to automatically classify files containing high-value content based on their importance and vulnerability.
DataSecurity Plus allows you to choose from a set of four universal classification labels to tag your files. These are:
- Public
- Internal
- Confidential
- Restricted
The conditions used to classify a file include policies matched, risk score of the file, number of rule match instances, etc.
Note: For the data classification profile to function, the service account or the user account used to configure the domain must possess Write permissions for the file.
To create a new data classification profile, follow these steps:
- Select Risk Analysis from the application drop-down.
- Go to Configuration > Data Discovery Settings > Classification Profile.
- Click the +Add Classification Profile button at the top-right corner.
- Choose a classification label from the options available: Public, Internal, Confidential, and Restricted.
- Under Criteria, define the conditions—such as matched policies, file risk score, and number of rule matches—for the file to be classified under the label defined in the previous step.
- Click Save.
Note:
The Risk Analysis module provides automated classification, whereas the Endpoint DLP module requires manual classification. This means:
- Files classified automatically through the Risk Analysis module can only be upgraded manually.
- Files automatically classified in Risk Analysis (based on policy, rule, or risk score) will trigger the corresponding Endpoint DLP audit or alert profiles if those profiles use the same classification label.
Use cases:
- Prevent files classified as Restricted from being transferred to USB devices by defining file classification criteria for the Removable Storage alert profile.
- Block files classified as Internal from being pasted into publicly accessible folders by defining file classification criteria for the Clipboard alert profile.