About deploying Data Loss Prevention on Amazon Web Services
Symantec Data Loss Prevention
two- and three-tier deployments are supported on Amazon Web Services Virtual Private Cloud (VPC). That enables you to use a cloud infrastructure for one or more of your Data Loss Prevention servers. You can also use a hybrid architecture for your AWS cloud deployment. With hybrid architectures, you deploy an Enforce Server and Oracle database on premises and deploy detection servers on the AWS infrastructure. You can deploy the Enforce Server, the Oracle database (or Oracle RDS), and detection servers on AWS. You can use Transport Layer Security (TLS) to encrypt all data that is transmitted between the Enforce Server and the database server or Oracle RDS. Some examples of AWS deployments include:
- A Network Discover detection server on AWS. This server discovers sensitive data residing on Microsoft SharePoint, Microsoft Exchange, and CIFS-compliant file share servers residing in the cloud.
- A Network Prevent for Email detection server on AWS. This server controls the transmission of sensitive email from a Microsoft Exchange mail server residing in the cloud.
- An Enforce Server with the Oracle database and the Cloud Prevent for Email Server in the AWS cloud. This server prevents data loss from Microsoft 365 email traffic.