Skip to main content
  • EN

We tested the user alert feature and noticed that when a DLP profile is applied to the user activity 'Post' for all web access, the user alert option cannot be selected.

However, once we changed the policy to apply only to specific categories, such as cloud storage, the user alert option became available.

We also observed that user alerts work if no DLP profile is applied but the 'Post' user activity is regulated across all web access.

 

App Category - Profile - Activity - Action

(1) Specific Category - DLP - Post - User Alert ✅

(2) All Web - DLP✅ - Post - Alert/Block

(3) All Web - No Profile ❌ - Post - User Alert ✅


Does anyone know the mechanism behind this behavior?

We noticed that all categories, except Identity and Access Management, can trigger Action: User Alert on Activity: Post with a DLP profile applied.

The reason why Category: Identity and Access Management is specifically excluded in the policy engine remains unknown.

I believe this can be treated as a short-term workaround until Netskope team provides a related statement.

When building a policy with the intention of applying an activity to all categories, we have to ensure that that activity is supported for all categories.

 

NOTE, Netskope does not support all activities for all categories. So, my assumption is that the post activity is greyed out because Netskope may not support the post activity for some all categories. This is to prevent ‘True Negatives’

Reply


Badges Winner

Show all badges

Not finding what you're looking for?

Don't be shy and let us know about your challenge.

Ask your question here!
Terms & ConditionsCookie settings