Addendum to 15.5 System Requirements
Most recent update: 17 August 2021 for the following support update: • Added support for Firefox 91 on Windows and macOS (with DLP 15.5 MP2) .
All updates since 13 January 2020 The following support was added to Data Loss Prevention (DLP) 15.5 since the System Requirements Guide was last updated on 13 January 2020. The date in parentheses indicates when support was added. IMPORTANT You must install the latest hotfix for DLP to ensure that you have the platform support as indicated in the following tables. In some cases, platform support as indicated is enabled only when you apply the latest hotfix.
Third-party support • Support for OpenJRE 1.8.0_282 on all DLP servers. See "About upgrading the JRE to the latest version" available in the Symantec Data Loss Prevention Help for information on migrating to the latest JRE version (5 May 2021) • Support for OpenJRE 1.8.0_262. See "About upgrading the JRE to the latest version" available in the Symantec Data Loss Prevention Help for information on migrating to the latest JRE version (21 December 2020) • Support for the following Napatech Driver packages (13 May 2020): – Windows: 11.8.1 (driver version 3.15.x) – Linux: 12.1 (driver version 3.19.x) • Removed support for SICAP for the McAfee Web Gateway proxy (20 March 2020)
Endpoint Data Loss Prevention supported macOS operating systems • macOS 10.15.7 with DLP Agent version 15.5 MP2 (1 October 2020). • macOS 10.15.6 with DLP Agent version 15.5 MP2 (23 July 2020). • macOS 10.15.5 with DLP Agent version 15.5 MP2 (2 June 2020). • macOS 10.15.4 on DLP Agent version 15.5 MP2 (9 April 2020) • macOS 10.15.3 on DLP Agent version 15.5 MP2 (14 February 2020)
Endpoint Data Loss Prevention supported Windows operating systems: • Windows 10 version 21H1 (OS build 19043.985) (7 June 2021) • Windows 10 version 20H2 (build 19042.572) (21 October 2020) • Windows 10 version 2004 (build 19041.264) (29 May 2020) Edge monitoring is supported starting with DLP Agent version 15.5 MP2.
Applications supported by Endpoint Prevent: • Chrome
2
• Chrome 92 on macOS with DLP 15.5 MP2 (26 July 2021) • Chrome 91 on macOS with DLP 15.5 MP2 (27 May 2021) • Chrome 91 on Windows with DLP 15.5 MP2 (26 May 2021) • Chrome 90 on Windows with DLP 15.5 MP2 (16 April 2021) • Chrome 88 on both Windows and macOS with DLP 15.5 MP2 (21 January 2021) • Chrome 87 on both Windows and macOS with DLP 15.5 MP2 (19 November 2020) • Chrome 86 on both Windows and macOS with DLP 15.5 MP2 (13 November 2020) • Chrome 85 on both Windows and macOS with DLP 15.5 MP2 (3 September 2020) • Chrome 84 on both Windows and macOS with DLP 15.5 MP2 (16 July 2020) • Chrome 83 on both Windows and macOS with DLP 15.5 MP2 (29 May 2020) • Chrome 81 on both Windows and macOS with DLP 15.5 MP2 (9 April 2020) • Chrome 80 monitoring on Windows and macOS with DLP 15.5 MP2 (14 February 2020) • Edge – Edge (Chromium-based) version 92 on Windows (27 July 2021) – Edge (Chromium-based) version 91 on Windows with DLP 15.5 MP2 (2 June 2021) – Edge (Chromium-based) version 90 on Windows with DLP 15.5 MP2 (28 April 2021) If a user uploads a folder with sensitive data, Data Loss Prevention is unable to detect the folder upload. Additionally, when drag-and-drop functionality is used, Unknown URLs are indicated in incident reports. See the article Edge Chromium 90 Issues: DLP Failure to Detect Folder Uploads and Unknown URLs for Drag and Drop for additional details. – Edge (Chromium-based) 88 with DLP 15.5 MP2 (25 January 2021) – Edge (Chromium-based) 87 with DLP 15.5 (20 November 2020) – Edge (Chromium-based) 86 with DLP 15.5 (13 October 2020) – Edge (Chromium-based) through version 85 with DLP 15.5 MP2 (2 September 2020) • Firefox – Firefox 91 on Windows and macOS (with DLP 15.5 MP2) (17 August 2021) – Firefox 90 on both Windows and macOS (14 July 2021) – Firefox 89 on both Windows and macOS (3 June 2021) – Firefox 88 on Windows with DLP 15.5 MP2 (20 April 2021) – Firefox 87 on Windows with DLP 15.5 MP2 (25 March 2021) – Firefox 85 on both Windows and macOS with DLP 15.5 MP2 (1 February 2021) – Firefox 84 on both Windows and macOS with DLP 15.5 MP2 (18 December 2020) – Firefox 82 on both Windows and macOS (26 October 2020) – Firefox 81 on both Windows and macOS (29 September 2020) – Firefox 80 on both Windows and macOS (31 August 2020) – Firefox 79 on both Windows and macOS (3 August 2020) – Firefox 77 and 78 on both Windows and macOS (1 July 2020) – Support for Firefox 76 on both Windows and macOS. Removed references to Firefox 76 beta support (13 May 2020) – Firefox 75 on both Windows and macOS with Symantec Data Loss Prevention (9 April 2020) – Firefox 74 monitoring on Windows and macOS with Symantec Data Loss Prevention (17 March 2020)
Integrations with other Symantec products: • Symantec Messaging Gateway (SMG) (8200 and 8300 Series) version 10.7.x (13 February 2020)
3
Operating system requirements for servers • Requirements for using Windows Server 2012 R2 includes installing the patches KB2919355, KB2919442, and KB2999226 (10 July 2020) • Support for Red Hat Enterprise Linux 7.9 (3 November 2020) • Support for Red Hat Enterprise Linux 7.8 (4 June 2020) • Support for Red Hat Enterprise Linux 7.7 starting with Symantec Data Loss Prevention version 15.5 MP2 (17 March 2020)
File system targets support • Support for Microsoft Exchange Server 2019 as a Discover target (1 July 2020)
Oracle database support • Oracle 19c Enterprise – Database Release Update 19.8.0.0 (25 September 2020) – Database Release Update 19.6.0.0 (only on Linux servers) (10 September 2020) – 19.3.0.0.0 (17 July 2020) You must obtain software and support from Oracle. For implementation details, see the Symantec Data Loss Prevention Oracle 19c Implementation Guide at the Tech Docs Portal. • Oracle 19c Standard Edition – Database Release Update 19.8.0.0 (25 September 2020) – Database Release Update 19.6.0.0 (only on Linux servers) (10 September 2020) – 19.3.0.0.0 (17 July 2020) You can obtain the software from Symantec. For implementation details, see the Symantec Data Loss Prevention Oracle 19c Implementation Guide at the Tech Docs Portal.
Browser support for accessing the Enforce Server administration console • Chrome 87 (4 February 2021)
4 Symantec™ Data Loss Prevention System Requirements and Compatibility Guide
Version 15.5
Last updated: 10 February 2020 Symantec Data Loss Prevention System Requirements and Compatibility Guide
Documentation version: 15.5p Legal Notice Copyright © 2019 Symantec Corporation. All rights reserved. Symantec, CloudSOC, Blue Coat, the Symantec Logo, the Checkmark Logo, the Blue Coat logo, and the Shield Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This Symantec product may contain third party software for which Symantec is required to provide attribution to the third party (“Third Party Programs”). Some of the Third Party Programs are available under open source or free software licenses. The License Agreement accompanying the Software does not alter any rights or obligations you may have under those open source or free software licenses. Please see the Third Party Legal Notice Appendix to this Documentation or TPIP ReadMe File accompanying this Symantec product for more information on the Third Party Programs. The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any. THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE. The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, et seq. "Commercial Computer Software and Commercial Computer Software Documentation," as applicable, and any successor regulations, whether delivered by Symantec as on premises or hosted services. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement. Symantec Corporation 350 Ellis Street Mountain View, CA 94043 https://www.symantec.com Symantec Support
All support services will be delivered in accordance with your support agreement and the then-current Enterprise Technical Support policy. Knowledge Base Articles and Symantec Connect Before you contact Technical Support, you can find free content in our online Knowledge Base, which includes troubleshooting articles, how-to articles, alerts, and product manuals. In the search box of the following URL, type the name of your product: https://support.symantec.com Access our blogs and online forums to engage with other customers, partners, and Symantec employees on a wide range of topics at the following URL: https://www.symantec.com/connect Technical Support and Enterprise Customer Support Symantec Support maintains support centers globally 24 hours a day, 7 days a week. Technical Support’s primary role is to respond to specific queries about product features and functionality. Enterprise Customer Support assists with non-technical questions, such as license activation, software version upgrades, product access, and renewals. For Symantec Support terms, conditions, policies, and other support information, see: https://entced.symantec.com/default/ent/supportref To contact Symantec Support, see: https://support.symantec.com/en_US/contact-support.html Contents
Symantec Support ...... 4
Chapter 1 About this guide ...... 7 About updates to Symantec Data Loss Prevention system requirements ...... 7 About deprecated platforms ...... 10
Chapter 2 System requirements and recommendations ...... 11 Deployment planning considerations ...... 11 The effect of scale on system requirements ...... 12 Minimum system requirements for Symantec Data Loss Prevention servers ...... 14 Single-tier installation minimum hardware requirements ...... 14 Very small installation minimum hardware requirements ...... 15 Small installation minimum hardware requirements ...... 16 Medium installation minimum hardware requirements ...... 18 Large enterprise minimum hardware requirements ...... 19 Operating system requirements for servers ...... 21 System requirements for OCR Servers ...... 25 Endpoint computer requirements for the Symantec DLP Agent ...... 26 Operating system requirements for endpoint systems ...... 26 Memory and disk space requirements for the Symantec DLP Agent ...... 33 Supported languages for detection ...... 33 Available language packs ...... 35 Oracle database requirements ...... 36 Browser requirements for accessing the Enforce Server administration console ...... 38 Deploying Data Loss Prevention on public cloud infrastructures ...... 38 Deploying Symantec Data Loss Prevention on Amazon Web Services infrastructure ...... 38 Deploying Symantec Data Loss Prevention on Microsoft Azure ...... 39 Deploying Symantec Data Loss Prevention on Oracle Cloud ...... 39 Virtual server support ...... 40 Contents 6
Virtual desktop and virtual application support with Endpoint Prevent ...... 41 Supported operating systems for the EMDI, EDM, and IDM Remote Indexers ...... 43 Third-party software requirements and recommendations ...... 44
Chapter 3 Product compatibility ...... 49 Environment compatibility and requirements for Network Prevent for Email ...... 49 Proxy server compatibility with Network Prevent for Web ...... 50 SSL monitoring with Network Monitor ...... 51 Secure ICAP support for Network Prevent for Web using the stunnel service ...... 51 High-speed packet capture cards ...... 52 Veritas Data Insight compatibility with Symantec Data Loss Prevention ...... 53 Integrations with other Symantec products ...... 54 Network Discover/Cloud Storage Discover compatibility ...... 56 Supported Box cloud storage targets ...... 56 Supported file system targets ...... 56 Supported IBM (Lotus) Notes targets ...... 57 Supported SQL database targets ...... 57 Supported SharePoint server targets ...... 57 Supported Exchange Server targets ...... 58 Supported file system scanner targets ...... 58 Supported Documentum (scanner) targets ...... 59 Supported OpenText (Livelink) scanner targets ...... 59 Supported web server (scanner) targets ...... 59 Endpoint Prevent supported applications ...... 60 Applications supported by Endpoint Prevent on Windows ...... 60 Applications supported by Endpoint Prevent on macOS ...... 68 Support for monitoring applications protected by System Integrity Protection ...... 73 Chapter 1
About this guide
This chapter includes the following topics:
■ About updates to Symantec Data Loss Prevention system requirements
■ About deprecated platforms
About updates to Symantec Data Loss Prevention system requirements System requirements as described in this guide are occasionally updated as new information becomes available. You can find the latest version of the Symantec Data Loss Prevention System Requirements and Compatibility Guide at the following link to the Symantec Support Center article. http://www.symantec.com/docs/DOC10602 Subscribe to the article at the Support Center to be notified when there are updates. The following table provides the history of updates to this version of the Symantec Data Loss Prevention System Requirements and Compatibility Guide.
Table 1-1 Change history for the Symantec Data Loss Prevention System Requirements and Compatibility Guide
Date Description
13 January 2020 Added support for Windows 10 Version 1909 (November 2019 Update).
30 December 2019 Added support for macOS 10.15.2. Added support for Chrome 79 monitoring on Windows and macOS.
11 December 2019 Added support for VMware Horizon View 7.10. About this guide 8 About updates to Symantec Data Loss Prevention system requirements
Table 1-1 Change history for the Symantec Data Loss Prevention System Requirements and Compatibility Guide (continued)
Date Description
9 December 2019 Added support for Firefox 71 monitoring on Windows and macOS. Added DLP Agent support for Microsoft Windows Server 2019.
15 November 2019 Added support for macOS 10.15.1.
11 November 2019 Added support for VMware View 7.9.
8 November 2019 Added support for Safari 12.
31 October 2019 Added support for Chrome 78 monitoring on Windows and macOS.
28 October 2019 Added support for Firefox 70 monitoring on Windows and macOS.
16 October 2019 Clarified disk requirements for large enterprise minimum system requirements to no longer include SSD as a recommended type.
18 September 2019 Added support for Chrome 76 monitoring on Windows and macOS. Corrected support for F5 BIG-IP proxy to remove SICAP and add ICAP. Added support for Enforce and detection servers on Red Hat Enterprise Linux 7.7.
6 September 2019 Added support for Firefox 69 monitoring on Windows and macOS. Clarified disk requirements for large enterprise minimum system requirements to include SSD as a recommended type.
28 August 2019 Clarified Microsoft Office SharePoint Server 2019 support.
22 August 2019 Added support for Fortinet FortiGate-VM 6.2.1 with Network Prevent for Web. Added support for Microsoft Office SharePoint Server 2019 as a target supported by Network Discover/Cloud Storage Discover. Added support for macOS 10.14.6.
1 August 2019 Added support for Chrome 76 monitoring on Windows and macOS. Added support for Oracle 12.1.0.2 Enterprise Edition on premises and on AWS RDS.
17 July 2019 Added support for Firefox 68 monitoring on Windows and macOS. Added support for Citrix XenApp 7.19 and Citrix XenDesktop 7.19. About this guide 9 About updates to Symantec Data Loss Prevention system requirements
Table 1-1 Change history for the Symantec Data Loss Prevention System Requirements and Compatibility Guide (continued)
Date Description
8 July 2019 Added support for SIR (OCR/Form Recognition) with Cloud Prevent for Office 365 on Azure. Clarified that Oracle Linux 7.3 RHCK (Red Hat compatible kernel) is also supported for on-premises deployments. Added support for Chrome 75 monitoring on Windows and macOS.
20 June 2019 Added DLP Agent support for Version 1903 (Windows 10 May 2019 Update).
11 June 2019 Added support for Firefox 67 monitoring on Windows and macOS. Added support for macOS 10.14.5.
20 May 2019 Added Hotfix requirement for Microsoft Outlook 2019 scanning on macOS DLP Agent.
1 May 2019 Added support for Chrome 74 monitoring on Windows and macOS endpoints.
18 April 2019 Added DLP Agent support for macOS 10.14.4.
5 April 2019 Added support for Symantec Data Insight 6.1.4.
3 April 2019 Corrected support statement for Firefox 66 monitoring on Windows and macOS endpoints.
26 March 2019 Added support for Firefox 66 monitoring on Windows and macOS endpoints.
25 March 2019 Updated Hotfix information for Chrome 72 and 73 monitoring support.
20 March 2019 Added support for Chrome 73 monitoring on Windows and macOS endpoints.
12 March 2019 Added DLP Agent support for macOS 10.14.3.
22 February 2019 Added support for Enforce and detection servers on Red Hat Enterprise Linux 7.6.
13 February 2019 Added support for Chrome 72 monitoring on Windows and macOS endpoints. Added support for Firefox 65 monitoring for Windows and macOS endpoints.
5 February 2019 Added note and link to Support Center alert about Chrome 72 monitoring on Windows endpoints. Added support for F5 BIG-IP proxy 14.1.0 and McAfee Web Gateway 7.8.2. About this guide 10 About deprecated platforms
Table 1-1 Change history for the Symantec Data Loss Prevention System Requirements and Compatibility Guide (continued)
Date Description
7 January 2019 Added support for HTTPS monitoring of Firefox 64 on macOS and Windows endpoints. Added DLP Agent support for macOS 10.14.2.
About deprecated platforms Certain platforms are referred to as “deprecated.” That indicates that while the deprecated platform is supported in the current release, Symantec plans to remove support in an upcoming release. If your Symantec Data Loss Prevention environment includes a deprecated platform, you should plan on updating the platform to a later supported version or a different supported platform as soon as possible. Chapter 2
System requirements and recommendations
This chapter includes the following topics:
■ Deployment planning considerations
■ Minimum system requirements for Symantec Data Loss Prevention servers
■ System requirements for OCR Servers
■ Endpoint computer requirements for the Symantec DLP Agent
■ Supported languages for detection
■ Available language packs
■ Oracle database requirements
■ Browser requirements for accessing the Enforce Server administration console
■ Deploying Data Loss Prevention on public cloud infrastructures
■ Virtual server support
■ Virtual desktop and virtual application support with Endpoint Prevent
■ Supported operating systems for the EMDI, EDM, and IDM Remote Indexers
■ Third-party software requirements and recommendations
Deployment planning considerations Installation planning and system requirements for Symantec Data Loss Prevention depend on: System requirements and recommendations 12 Deployment planning considerations
■ The type and amount of information you want to protect
■ The amount of network traffic you want to monitor
■ The size of your organization
■ The type of Symantec Data Loss Prevention detection servers you choose to install These factors affect both:
■ The type of installation tier you choose to deploy (three-tier, two-tier, or single-tier)
■ The system requirements for your Symantec Data Loss Prevention installation See “The effect of scale on system requirements” on page 12.
The effect of scale on system requirements Some system requirements vary depending on the size of the Symantec Data Loss Prevention software deployment. Determine the size of your organization and the corresponding Symantec Data Loss Prevention deployment using the information in this section. The key considerations in determining the deployment size are as follows:
■ Number of Enforce Server users
■ Number of detection servers
■ Daily incident volume
■ Amount of network traffic to monitor
■ Size of Exact Data Match profile (EDM), Exact Match Data Identifier profile (EMDI), or Indexed Data Match profile (IDM)
■ Size of your Form Recognition profile The following table outlines five sample deployments based on enterprise size. Review these sample deployments to understand which best matches your organization’s environment.
Table 2-1 Types of enterprise deployments
Variable Single tier Very small Small Medium Large (minimum supported system)
Number of N/A 5 10 20 30 Enforce Server users System requirements and recommendations 13 Deployment planning considerations
Table 2-1 Types of enterprise deployments (continued)
Variable Single tier Very small Small Medium Large (minimum supported system)
Number of N/A 5 10 50 100+ detection servers
Daily incident N/A 5000 10,000 50,000 100,000 volume
Volume of 30-40 Mbps 30-40 Mbps 30-40 Mbps 30-40 Mbps >40 Mbps network traffic to monitor
EDM/EMDI/IDM EDM 4 million cells See the Symantec See the See the Symantec See the Symantec index size or IDM 250 MB Data Loss Symantec Data Data Loss Data Loss (1400 files). See Prevention Loss Prevention Prevention Prevention the Symantec Data Administration Administration Administration Administration Loss Prevention Guide for Guide for Guide for Guide for Administration information about information about information about information about Guide for EDM, IDM, and EDM, IDM, and EDM, IDM, and EDM, IDM, and information about EMDI impact on EMDI impact on EMDI impact on EMDI impact on EDM, IDM, and sizing for enterprise sizing for sizing for sizing for EMDI impact on deployments. enterprise enterprise enterprise sizing for enterprise deployments. deployments. deployments. deployments.
Form See article See article See article See article See article Recognition TECH235074 at TECH235074 at TECH235074 at TECH235074 at TECH235074 at profile size the Symantec the Symantec the Symantec the Symantec the Symantec Support Center for Support Center for Support Center Support Center Support Center information about information about for information for information for information Form Recognition Form Recognition about Form about Form about Form sizing. sizing. Recognition Recognition Recognition sizing. sizing. sizing.
Hardware See “Single-tier See “Very small See “Small See “Medium See “Large requirements installation installation installation installation enterprise minimum hardware minimum hardware minimum minimum minimum requirements” requirements” hardware hardware hardware on page 14. on page 15. requirements” requirements” requirements” on page 16. on page 18. on page 19. System requirements and recommendations 14 Minimum system requirements for Symantec Data Loss Prevention servers
For additional related information see also Symantec Data Loss Prevention Network Monitor and Prevent Performance Sizing Guidelines, available at the Symantec Support Center at http://www.symantec.com/docs/DOC8253.
Minimum system requirements for Symantec Data Loss Prevention servers All Symantec Data Loss Prevention servers must meet or exceed the minimum hardware specifications and run on one of the supported operating systems.
■ See “Single-tier installation minimum hardware requirements” on page 14.
■ See “Very small installation minimum hardware requirements” on page 15.
■ See “Small installation minimum hardware requirements” on page 16.
■ See “Medium installation minimum hardware requirements” on page 18.
■ See “Large enterprise minimum hardware requirements” on page 19.
■ See “Operating system requirements for servers” on page 21.
Note: Requirements for Symantec Data Loss Prevention Virtual Appliances are the same as for the software server counterparts, except for virtual environment support. See “Virtual server support” on page 40.
If the Oracle database for Symantec Data Loss Prevention is installed on a dedicated computer (a three-tier deployment), that system must meet its own set of system requirements. See “Oracle database requirements” on page 36.
Single-tier installation minimum hardware requirements The following table provides the system requirements for branch office or small organization single-tier deployments. Because single-tier deployments include the Enforce Server, the Oracle database, and the detection server all on the same computer, the processing and memory requirements are higher than they might be on dedicated servers in a two- or three-tier deployment.
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection. System requirements and recommendations 15 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-2 Single-tier installation minimum hardware requirements
Required for Single Server Installation
Processor Eight-core CPU
Memory 64 GB RAM
Disk 3 TB, RAID 5 configuration (with a minimum of five spindles)
NICs 1 copper or fiber 1 Gb Ethernet NIC (if you are using Network Monitor you will need a minimum of two NICs)
Very small installation minimum hardware requirements The following table provides the system requirements for the smallest supported installation of Symantec Data Loss Prevention. This is a two-tier installation, in which the Enforce Server and Oracle database are both hosted on the same computer.
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection.
Table 2-3 Very small installation minimum hardware requirements
Required for Enforce Server Network Monitor Network Discover/Cloud Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Processor Two-core CPU Four-core CPU Four-core CPU
Memory 8 GB RAM 6–8 GB RAM (See the 6–8 GB RAM (See the Symantec Data Loss Symantec Data Loss Prevention Administration Prevention Administration Guide for information about Guide for information about EDM, IDM, and EMDI EDM, IDM, and EMDI impact on sizing. See article impact on sizing. See article TECH235074 at the TECH235074 at the Symantec Support Center Symantec Support Center for information about Form for information about Form Recognition sizing.) Recognition sizing.) System requirements and recommendations 16 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-3 Very small installation minimum hardware requirements (continued)
Required for Enforce Server Network Monitor Network Discover/Cloud Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Disk 500 GB hard drive storage. 140 GB 140 GB For Network Discover/Cloud For Network Discover/Cloud Storage Discover Storage Discover deployments, approximately deployments, approximately 150 MB of disk space is 150 MB of disk space is required to maintain required to maintain incremental scan indexes. incremental scan indexes. This is based on an This is based on an overhead of 5 MB per overhead of 5 MB per incremental scan target and incremental scan target and 50 bytes per item in the 50 bytes per item in the target. target.
NICs One copper or fiber 1 1 copper or fiber 1 Gb/100 1 copper or fiber 1 Gb/100 Gb/100 Mb Ethernet NIC to Mb Ethernet NIC to Mb Ethernet NIC to communicate with detection communicate with the communicate with the servers. Enforce Server. Enforce Server.
Small installation minimum hardware requirements The following table provides the system requirements for a small installation of Symantec Data Loss Prevention. This is a three-tier installation, in which the Enforce Server and Oracle database are hosted on separate computers.
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection. System requirements and recommendations 17 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-4 Small installation minimum hardware requirements
Required for Enforce Server Oracle database Network Monitor Network Discover/Cloud Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Processor Two-core CPU Two-core CPU Four-core CPU Four-core CPU
Memory 8 GB RAM 8 GB RAM 6–8 GB RAM (See 6–8 GB RAM (See the Symantec Data the Symantec Data Loss Prevention Loss Prevention Administration Guide Administration Guide for information about for information about EDM, IDM, and EDM, IDM, and EMDI impact on EMDI impact on sizing. See article sizing. See article TECH235074 at the TECH235074 at the Symantec Support Symantec Support Center for Center for information about information about Form Recognition Form Recognition sizing.) sizing.)
Disk 500 GB hard drive 500 GB - 1 TB 140 GB 140 GB storage. See “Oracle database For Network For Network requirements” on page 36. Discover/Cloud Discover/Cloud Storage Discover Storage Discover deployments, deployments, approximately 150 approximately 150 MB of disk space is MB of disk space is required to maintain required to maintain incremental scan incremental scan indexes. This is indexes. This is based on an based on an overhead of 5 MB overhead of 5 MB per incremental scan per incremental scan target and 50 bytes target and 50 bytes per item in the per item in the target. target. System requirements and recommendations 18 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-4 Small installation minimum hardware requirements (continued)
Required for Enforce Server Oracle database Network Monitor Network Discover/Cloud Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
NICs One copper or fiber N/A 1 copper or fiber 1 1 copper or fiber 1 1 Gb/100 Mb Gb/100 Mb Ethernet Gb/100 Mb Ethernet Ethernet NIC to NIC to communicate NIC to communicate communicate with with the Enforce with the Enforce detection servers. Server. Server.
Medium installation minimum hardware requirements The following table provides the system requirements for medium installations of Symantec Data Loss Prevention. This is a three-tier installation, with the Enforce Server and Oracle database hosted on separate computers.
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection.
Table 2-5 Medium installation minimum hardware requirements
Required Enforce Server Oracle Network Monitor Network Discover/Cloud for database Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Processor Two-core CPU Four-core Four-core CPU Four-core CPU CPU System requirements and recommendations 19 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-5 Medium installation minimum hardware requirements (continued)
Required Enforce Server Oracle Network Monitor Network Discover/Cloud for database Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Memory 12 GB RAM 16 GB RAM 6–8 GB RAM (See the 6–8 GB RAM (See the Symantec Symantec Data Loss Data Loss Prevention (EDM/IDM and Form Prevention Administration Guide for Recognition profile size can Administration Guide information about EDM, IDM, and increase memory for information about EMDI impact on sizing. See article requirements. See article EDM, IDM, and EMDI TECH235074 at the Symantec TECH235074 at the impact on sizing. See Support Center for information Symantec Support Center for article TECH235074 at about Form Recognition sizing.) information about Form the Symantec Support Recognition sizing.) Center for information about Form Recognition sizing.)
Disk 500 GB hybrid storage. 500 GB - 1 TB 140 GB 140 GB For Network Discover/Cloud See “Oracle For Network Discover/Cloud Storage Discover database Storage Discover deployments, deployments, approximately requirements” approximately 150 MB of disk 150 MB of disk space is on page 36. space is required to maintain required to maintain incremental scan indexes. This is incremental scan indexes. based on an overhead of 5 MB This is based on an overhead per incremental scan target and of 5 MB per incremental scan 50 bytes per item in the target. target and 50 bytes per item in the target.
NICs 1 copper or fiber 1 Gb/100 N/A 1 copper or fiber 1 1 copper or fiber 1 Gb/100 Mb Mb Ethernet NIC to Gb/100 Mb Ethernet Ethernet NIC to communicate with communicate with detection NIC to communicate the Enforce Server. servers. with the Enforce Server.
See “Oracle database requirements” on page 36. See “The effect of scale on system requirements” on page 12.
Large enterprise minimum hardware requirements The following table provides the system requirements for large installations of Symantec Data Loss Prevention. This is a three-tier installation, with the Enforce Server and Oracle database hosted on separate computers. System requirements and recommendations 20 Minimum system requirements for Symantec Data Loss Prevention servers
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection.
Table 2-6 Large enterprise minimum system requirements
Required For Enforce Server Oracle Network Monitor Network Discover/Cloud database Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
Processor Four-core CPU Six-core CPU Eight-core CPU Eight-core CPU
Memory 16 GB RAM 32 GB RAM 8–16 GB RAM (See the 8–16 GB RAM (See the Symantec Data Loss Symantec Data Loss (EDM/IDM and Form Prevention Prevention Administration Recognition profile size can Administration Guide for Guide for information about increase memory information about EDM, EDM, IDM, and EMDI impact requirements. See the IDM, and EMDI impact on sizing. Symantec Data Loss on sizing. Prevention Administration See article TECH235074 at Guide for information about See article the Symantec Support Center EDM and IDM sizing. TECH235074 at the for information about Form Symantec Support Recognition sizing. See article TECH235074 at Center for information the Symantec Support about Form Recognition Center for information about sizing. Form Recognition sizing.
Disk 1 TB storage (SSD or SAN) 500 GB - 1 TB 140 GB 140 GB Requirements For Network Discover/Cloud See “Oracle For Network Discover/Cloud Storage Discover database Storage Discover deployments, approximately requirements” deployments, approximately 1 GB of disk space is on page 36. 1 GB of disk space is required required to maintain to maintain incremental scan incremental scan indexes. indexes. This is based on an This is based on an overhead of 5 MB per overhead of 5 MB per incremental scan target and incremental scan target and 50 bytes per item in the target. 50 bytes per item in the target. System requirements and recommendations 21 Minimum system requirements for Symantec Data Loss Prevention servers
Table 2-6 Large enterprise minimum system requirements (continued)
Required For Enforce Server Oracle Network Monitor Network Discover/Cloud database Storage Discover, Network Prevent, Cloud Prevent for Email, or Endpoint Prevent
NICs To communicate with N/A To communicate with To communicate with the detection servers: the Enforce Server: Enforce Server: 1 copper or fiber 1 Gb/100 1 copper or fiber 1 1 copper or fiber 1 Gb/100 Mb Mb Ethernet NIC Gb/100 Mb Ethernet Ethernet NIC For network traffic monitoring (pick one): 1 copper or fiber 1 Gb/100 Mb Ethernet NIC.
High-speed N/A N/A See “High-speed packet N/A packet capture cards” capture cards on page 52.
See “Oracle database requirements” on page 36. See “The effect of scale on system requirements” on page 12.
Operating system requirements for servers Symantec Data Loss Prevention servers can be installed on a supported Linux or Windows operating system. Different operating systems can be used for different servers in a heterogeneous environment.
Note: If you are using Windows Server 2012 R2, you must install two patches. See “Installing patches for Windows Server 2012 R2” on page 23.
Symantec Data Loss Prevention supports the following 64-bit operating systems for Enforce Server and detection server computers:
■ Microsoft Windows Server 2008 R2 SP1, Enterprise Edition with patch
■ Microsoft Windows Server 2008 R2 SP1, Standard Edition with patch
■ Microsoft Windows Server 2012 R2, Datacenter Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23.
■ Microsoft Windows Server 2012 R2, Standard Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23. System requirements and recommendations 22 Minimum system requirements for Symantec Data Loss Prevention servers
■ Microsoft Windows Server 2016, Standard Edition
■ Microsoft Windows Server 2016, Datacenter Edition
■ Red Hat Enterprise Linux 6.8, 6.9, and 6.10 See “Installing fonts on Linux servers” on page 25.
■ Red Hat Enterprise Linux 7.3 through 7.7 See “Installing fonts on Linux servers” on page 25.
■ Oracle Linux 7.3 and 7.4 See “Installing fonts on Linux servers” on page 25. Symantec Data Loss Prevention supports the 64-bit operating system for detection server computers on Microsoft Windows Server 2016, Core. Operating system requirements for Single Server deployments Symantec Data Loss Prevention supports the following 64-bit operating systems for Single Server deployments:
■ Microsoft Windows Server 2008 R2 SP1, Enterprise Edition with patch
■ Microsoft Windows Server 2008 R2 SP1, Standard Edition with patch
■ Microsoft Windows Server 2012 R2, Datacenter Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23.
■ Microsoft Windows Server 2012 R2, Standard Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23.
■ Microsoft Windows Server 2016, Standard Edition
■ Microsoft Windows Server 2016, Datacenter Edition
■ Red Hat Enterprise Linux 6.8, 6.9, and 6.10 See “Installing fonts on Linux servers” on page 25.
■ Red Hat Enterprise Linux 7.3 through 7.7 See “Installing fonts on Linux servers” on page 25.
■ Oracle Linux 7.3 and 7.4 See “Installing fonts on Linux servers” on page 25. English language and localized versions of both Linux and Windows operating systems are supported. See “Supported languages for detection” on page 33. See also the Symantec Data Loss Prevention Administration Guide for detailed information about supported languages and character sets. You can find the Symantec Data Loss Prevention Administration Guide at the Symantec Support Center here: http://www.symantec.com/docs/DOC9261. System requirements and recommendations 23 Minimum system requirements for Symantec Data Loss Prevention servers
Operating system requirements for the domain controller agent The domain controller agent enables you to resolve user names from IPv4 addresses in HTTP/S and FTP incidents. See the Symantec Data Loss Prevention Installation Guide for domain controller agent installation details. Symantec Data Loss Prevention supports the following operating systems for the domain controller agent:
■ Microsoft Windows Server 2008 R2, Enterprise Edition (64-bit)
■ Microsoft Windows Server 2008 R2, Standard Edition (64-bit)
■ Microsoft Windows Server 2008 R2 SP1, Enterprise Edition (64-bit) with patch
■ Microsoft Windows Server 2008 R2 SP1, Standard Edition (64-bit) with patch
■ Microsoft Windows Server 2012, Datacenter Edition (64-bit)
■ Microsoft Windows Server 2012, Standard Edition (64-bit)
■ Microsoft Windows Server 2012 R2, Datacenter Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23.
■ Microsoft Windows Server 2012 R2, Standard Edition with patch See “Installing patches for Windows Server 2012 R2” on page 23.
Installing patches for Windows Server 2012 R2 If you use Windows Server 2012 R2, you must install three Microsoft patches: KB2919355, KB2919442, and KB2999226. Go to https://support.microsoft.com/en-us/kb/2919355 and install KB2919355. Go to https://support.microsoft.com/en-us/kb/2919442 and install KB2919442. Go to https://support.microsoft.com/en-us/kb/2999226 and install KB2999226.
Installing fonts on Linux servers You must have at least one font installed on your Linux servers. However, Symantec recommends installing all available fonts on your Linux servers if you intend to use Form Recognition detection. To install all available fonts, run: yum groupinstall fonts on each Linux Enforce and detection server.
Linux partition guidelines Minimum free space requirements for Linux partitions vary according to the specific details of your Symantec Data Loss Prevention installation. The table below provides general guidelines that should be adapted to your installation as circumstances warrant. Symantec recommends using separate partitions for the different file systems, as indicated in the table. If you combine System requirements and recommendations 24 Minimum system requirements for Symantec Data Loss Prevention servers
multiple file systems onto fewer partitions, or onto a single root partition, make sure the partition has enough free space to hold the combined sizes of the file systems listed in the table.
Note: Partition size guidelines for detection servers are similar to those for Enforce Server without an Oracle database. See Table 2-8 on page 25.
Table 2-7 Linux partition minimum size guidelines—Enforce Server with Oracle database
Partition Minimum free space Description and comments
/home 6 GB Store the Oracle installation tools, Oracle installation ZIP files, and Oracle critical patch update (CPU) files in /home.
/tmp 1.2 GB The Oracle installer and installation tools require space in this directory.
/opt 500 GB for Small/Medium installations Contains installed programs such as Symantec Data Loss Prevention, the Oracle server, and 1 TB for Large installations the Oracle database. The Oracle database requires significant space in this directory. For improved performance, you may want to mount this partition on different disks/SAN/RAID from where the root partition is mounted.
/var 15 GB for Small/Medium installations Contains logs, EDM/IDM indexes, Form Recognition indexes, incremental scan indexes, 46 GB for Large installations and network packet capture directories. Note: The /var/spool/pcap and /var/SymantecDLP/drop_pcap directories must reside on the same partition or mount point.
/boot 100 MB This must be in its own ext2 or ext3 partition, not part of soft RAID (hardware RAID is supported). swap Equal to RAM If you need to have the memory dump in case of system crash (for debugging), you may want to increase these amounts. System requirements and recommendations 25 System requirements for OCR Servers
Table 2-8 Linux partition minimum size guidelines—Enforce Server without a database, or detection server
Partition Minimum size guidelines Description and comments
/opt 10 GB Contains installed programs such as Symantec Data Loss Prevention and the Oracle client.
/var 15 GB for Small/Medium installations Contains logs, EDM/IDM indexes, Form Recognition indexes, incremental scan indexes, 46 GB for Large installations and network packet capture directories. Note: The /var/spool/pcap and /var/Symantec/DataLossPrevention/drop_pcap directories must reside on the same partition or mount point.
/boot 100 MB This must be in its own ext2 or ext3 partition, not part of soft RAID (hardware RAID is supported).
swap Equal to RAM If you need to have the memory dump in case of system crash (for debugging), you may want to increase these amounts.
Installing fonts on Linux servers You must have at least one font installed on your Linux servers. However, Symantec recommends installing all available fonts on your Linux servers if you intend to use Form Recognition detection. To install all available fonts, run: yum groupinstall fonts on each Linux Enforce and detection server.
System requirements for OCR Servers Operating system requirements for OCR Servers Symantec supports deployment of OCR Servers on the Windows operating system. The same Windows servers supported for installation of the Enforce Server are supported for installation of OCR Servers. See “Operating system requirements for servers” on page 21. For more information on OCR Server system requirements and sizing guidelines, see "Symantec Data Loss Prevention OCR Server System Requirements and OCR Server Sizing Estimator" at http://www.symantec.com/docs/doc10612. System requirements and recommendations 26 Endpoint computer requirements for the Symantec DLP Agent
Symantec Data Loss Prevention compatibility with OCR Servers OCR Server version 1 is compatible with the following Symantec Data Loss Prevention versions:
■ 15.0
■ 15.1
■ 15.5
Endpoint computer requirements for the Symantec DLP Agent If you install Endpoint Prevent, the endpoint computers on which you install the Symantec DLP Agent must meet the requirements that are described in the following sections.
Note: Table 2-9 and Table 2-10 assume that you have installed the latest DLP hot fix from Symantec.
Operating system requirements for endpoint systems Endpoint Data Loss Prevention can operate on Endpoint systems that use the following operating systems:
Table 2-9 Endpoint Data Loss Prevention supported Windows operating systems
Operating Version DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Windows 2003 SP2 Yes No Yes No No No Server R2
Windows 2008 R2 Yes Yes Yes Yes Yes Yes Server Enterprise 2012 R2 Yes Yes Yes Yes Yes Yes or Standard (64-bit) System requirements and recommendations 27 Endpoint computer requirements for the Symantec DLP Agent
Table 2-9 Endpoint Data Loss Prevention supported Windows operating systems (continued)
Operating Version DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Microsoft No service No No Yes (on DLP Yes Yes Yes Windows pack Agent Server versions 14.6 2016 MP1 and Standard MP2) or Datacenter Edition (64-bit)
Microsoft No No No No No No Yes Windows Server 2019 (64-bit)
Windows 7 No service Yes Yes Yes No No No Enterprise, pack Professional, Ultimate SP1 Yes Yes Yes Yes Yes Yes (32-bit)
Windows 7 No service Yes Yes Yes No No No Enterprise, pack Professional, Ultimate SP1 Yes Yes Yes Yes Yes Yes (64-bit)
Windows 8 Unpatched No No No No No No Enterprise PC operating system (32-bit)
Windows 8 Unpatched Yes Yes Yes No No No Enterprise PC operating system (64-bit) System requirements and recommendations 28 Endpoint computer requirements for the Symantec DLP Agent
Table 2-9 Endpoint Data Loss Prevention supported Windows operating systems (continued)
Operating Version DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Windows Unpatched Yes Yes Yes Yes Yes Yes 8.1 Enterprise, Update 1 Yes Yes Yes Yes Yes Yes Pro PC Update 2 Yes Yes Yes Yes Yes Yes operating system Update 3 Yes Yes Yes Yes Yes Yes (64-bit)
Windows Unpatched Yes (14.0.1) Yes Yes Yes No No 10 Enterprise, Version No Yes Yes Yes Deprecated Deprecated Pro PC 1511 operating (November system Update) (64-bit) Version No Yes Yes Yes Deprecated Deprecated 1607 (Anniversary Update)
Version No No Yes (on DLP Yes Yes Yes 1703 Agent See note "a" See note "a" See note "a" (Creators version 14.6 immediately immediately immediately Update) MP1 and below. below. below. MP2) See note "a" immediately below.
Version No No Yes (on DLP Yes Yes Yes 1709 (Fall Agent Creators version 14.6 Update) MP1 and MP2)
Version No No No Yes (on DLP Yes Yes 1803 (April Agent version 2018 15.0 MP1) Update) [build #17134.48] System requirements and recommendations 29 Endpoint computer requirements for the Symantec DLP Agent
Table 2-9 Endpoint Data Loss Prevention supported Windows operating systems (continued)
Operating Version DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Version No No No No Yes (on DLP Yes 1607 LTSB Agent version 15.1 MP1)
Version No No No No Yes (on DLP Yes 1809 Agent version (Creators 15.1 MP1) Update)
Version No No Yes (on DLP No Yes (on DLP Yes (on DLP 1903 (May Agent Agent version Agent version 2019 version 14.6 15.1 MP2) 15.5 MP1) Update) MP3)
Version No No No No Yes (on DLP Yes (on DLP 1909 Agent version Agent version (November 15.1 MP2) 15.5 MP2) 2019 See note "b" See note "b" Update) immediately immediately below. below.
Additional details about Windows 10 support are available in the following Symantec Support Center articles: a. Known Issues for DLP Agent Support of Microsoft Windows 10 Creators Update b. There are known issues with monitoring drag and drop activity for Edge on Windows 10 (Version 1909). You must apply a hot fix for support of the Edge browser. See the article Public hot fixes for DLP Agents 15.1 MP2 and 15.5 MP2 for Edge support on Windows 10 Version 1909.
Table 2-10 Endpoint Data Loss Prevention supported macOS operating systems
Operating DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Apple Yes No No No No No macOS 10.8 (64-bit) System requirements and recommendations 30 Endpoint computer requirements for the Symantec DLP Agent
Table 2-10 Endpoint Data Loss Prevention supported macOS operating systems (continued)
Operating DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Apple Yes Yes Yes No No No macOS 10.9 (64-bit)
Apple Yes Yes Yes Deprecated No No macOS 10.10 (64-bit)
Apple No Yes ■ Through ■ Through Yes Yes macOS 10.11.5 10.11.5 10.11 (64-bit) ■ 10.11.6 on ■ 10.11.6 on on 14.6 MP2 15.0 MP1 with with Hotfix Hotfix 14.6.0205 15.0.0101
Apple No Yes (on DLP ■ Through ■ Through Yes Yes macOS Agent version 10.12.5 on 10.12.5 10.12 (64-bit) 14.5 MP1) DLP Agent ■ 10.12.6 on version 15.0 MP1 with 14.6 MP1 Hotfix ■ 10.12.6 on 15.0.0101 14.6 MP2 with Hotfix 14.6.0205 System requirements and recommendations 31 Endpoint computer requirements for the Symantec DLP Agent
Table 2-10 Endpoint Data Loss Prevention supported macOS operating systems (continued)
Operating DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Apple No No ■ 10.13.1 on ■ 10.13.1 on Yes (through Yes (through macOS DLP Agent DLP Agent 10.13.6) 10.13.6) 10.13 (64-bit) version version 15.0 14.6 MP2 ■ 10.13.2 on ■ 10.13.2 on version 15.0 14.6 MP2 MP1 with with Hotfix Hotfix 14.6.0205 15.0.0101 ■ 10.13.3 on ■ 10.13.3 on 14.6 MP2 version 15.0 with Hotfix_ MP1 with 14.6.0205 Hotfix 10.13.4 on 15.0.0101 14.6 MP2 ■ 10.13.4 on with Hotfix version 15.0 14.6.0205 MP1 with Hotfix See additional 15.0.0101 details following this ■ 10.13.5 on table. version 15.0 MP1 with Hotfix 15.0.0107. 01001 ■ 10.13.6 on version 15.0 MP1 with Hotfix 15.0.0107. 01001 See additional details following this table. System requirements and recommendations 32 Endpoint computer requirements for the Symantec DLP Agent
Table 2-10 Endpoint Data Loss Prevention supported macOS operating systems (continued)
Operating DLP version DLP version DLP version DLP version DLP version DLP version system 14.0 14.5 14.6 15.0 15.1 15.5
Apple No No 10.14.5 on No 10.14.1, 10.14.1 - 10.14.4 macOS version 14.6 10.14.2, and on version 15.5 10.14 (64-bit) MP3 10.14.5 on 10.14.5 on version 15.1 version 15.5 MP1 MP2 10.14.6 on 15.5 See note "e" MP1 with Hotfix immediately 15.5.0104.1006 below. See note "f" immediately below.
Apple 10.15.1 and 10.15.1 and macOS 10.15.2 on 10.15.2 on 10.15 (64-bit) version 15.1 version 15.5 MP2 MP2 See note "g" See note "g" immediately immediately below. below.
Additional details about macOS support are available in the following Symantec Support Center articles: a. Known issues using macOS 10.13 with DLP Agent versions 14.6 MP2 and 15.0 b. DLP Agents deployed with MDM profiles on macOS 10.13.2 not loading c. Monitoring macOS applications where SIP is enabled d. Use Application File Access to monitor Safari on macOS 10.12.4 and later e. Known issues upgrading from macOS 10.13.6 to macOS 10.14 with DLP Agent version 15.1 f. Security updates provided by Apple for macOS 10.14.x cause Outlook to crash when the DLP Agent is running g. Configuring MDM profiles for Full Disk Access for macOS 10.15 and DLP Agent support Symantec DLP Agents can also be installed on supported localized versions of these Windows and macOS operating systems. See “Supported languages for detection” on page 33. See also the Symantec Data Loss Prevention Administration Guide for detailed information about supported languages and character sets. System requirements and recommendations 33 Supported languages for detection
Memory and disk space requirements for the Symantec DLP Agent The Symantec DLP Agent software reserves a minimum of 25 MB to 30 MB of memory on the Endpoint computer, depending on the actual version of the software. The DLP Agent software temporarily consumes additional memory while it detects content or communicates with the Endpoint Prevent server. After these tasks are complete, the memory usage returns to the previous minimum. The initial Symantec DLP Agent installation consumes approximately 70 MB to 80 MB of hard disk space. The actual minimum amount depends on the size and number of policies that you deploy to the endpoint computer. Additional disk space is then required to temporarily store incident data on the endpoint computer until the Symantec DLP Agent sends that data to the Endpoint Prevent server. If the endpoint computer cannot connect to the Endpoint Prevent server for an extended period of time, the Symantec DLP Agent will continue to consume additional disk space as new incidents are created. The disk space is freed only after the agent software reconnects to the Endpoint Prevent server and transfers the stored incidents.
Note: The default content size for detection is 30 MB. If you plan to scan files larger than 30 MB, see article https://www.symantec.com/docs/TECH252393.html at the Symantec Support Center for information about tuning your system for large file inspection.
Supported languages for detection Symantec Data Loss Prevention supports a large number of languages for detection. Policies can be defined that accurately detect and report on the violations that are found in content in these languages:
■ Arabic
■ Brazilian Portuguese
■ Chinese (traditional)
■ Chinese (simplified)
■ Czech
■ Danish
■ Dutch
■ English
■ Finnish
■ French
■ German System requirements and recommendations 34 Supported languages for detection
■ Greek
■ Hebrew
■ Hungarian
■ Italian
■ Japanese
■ Korean
■ Norwegian
■ Polish
■ Portuguese
■ Romanian
■ Russian
■ Spanish
■ Swedish
■ Turkish* *Symantec Data Loss Prevention cannot be installed on a Windows operating system that is localized for the Turkish language, and you cannot choose Turkish as an alternate locale. For additional information about specific languages, see the Symantec Data Loss Prevention Release Notes. A number of capabilities are not implied by this support:
■ Technical support provided in a non-English language. Because Symantec Data Loss Prevention supports a particular language does not imply that technical support is delivered in that language.
■ Localized administrative user interface (UI) and documentation. Support for a language does not imply that the UI or product documentation has been localized into that language. However, even without a localized UI, user-defined portions of the UI such as pop-up notification messages on the endpoint can still be localized into any language by entering the appropriate text in the UI.
■ Localized content. Keywords are used in a number of areas of the product, including policy templates and data identifiers. Support for a language does not imply that these keywords have been translated into that language. Users may, however, add keywords in the new language through the Enforce Server administration console.
■ Localized content. Keywords are used in a number of areas of the product, including policy templates and data identifiers. Support for a language does not imply that these keywords System requirements and recommendations 35 Available language packs
have been translated into that language. Users may, however, add keywords in the new language through the Enforce Server administration console.
■ New file types, protocols, applications, or encodings. Support for a language does not imply support for any new file types, protocols, applications, or encodings that may be prevalent in that language or region other than what is already supported in the product.
■ Language-specific normalization. An example of normalization is to treat accented and unaccented versions of a character as the same. The product already performs a number of normalizations, including standard Unicode normalization that should cover the vast majority of cases. However, it does not mean that all potential normalizations are included.
■ Region-specific normalization and validation. An example of this is the awareness that the product has of the format of North American phone numbers, which allows it to treat different versions of a number as the same, and to identify invalid numbers in EDM source files. Support for a language does not imply this kind of functionality for that language or region. Items in these excluded categories are tracked as individual product enhancements on a language- or region-specific basis. Contact Symantec Technical Support for additional information on language-related enhancements or plans for the languages not listed.
Available language packs You can install any of the available language packs for your Symantec Data Loss Prevention deployment. Language packs provide a limited set of non-English languages for the Enforce Server administration console user interface and online Help. Note that these language packs are only needed to provide a translated user interface and online Help; they are not needed for data detection. Language packs also contain translated versions of selected Symantec Data Loss Prevention documentation. As they become available, language packs for Symantec Data Loss Prevention are distributed along with the software products they support. You can also download and add a language pack to an installation. Language packs do not require any additional purchase or license. Consult the Symantec Data Loss Prevention Administration Guide for details on how to add and enable a language pack. Language packs are distributed in the Symantec_DLP_15.5_Lang_Pack-ML.zip file on the Symantec FileConnect website. When you extract the contents of the ZIP file, the individual language pack files have names in the form:
Symantec_DLP_15.5_Lang_Pack_
Table 2-11 lists available language packs. System requirements and recommendations 36 Oracle database requirements
Table 2-11 Language packs and corresponding locale codes
Language Locale code
Brazilian Portuguese PT_BR
Chinese (Simplified) ZH_CN
Chinese (Traditional) ZH_TW
French FR_FR
German DE_DE
Italian IT_IT
Japanese JA_JP
Korean KO_KR
Mexican Spanish ES_MX
Russian RU_RU
Note: Not all language packs are available when a product is first released.
Oracle database requirements Symantec Data Loss Prevention supports the following Oracle databases:
■ Oracle 12c Enterprise Edition Oracle 12.1.0.2 and 12.2.0.1 are tested with the Symantec Data Loss Prevention schema. You must obtain software and support from Oracle. For implementation details, see the Symantec Data Loss Prevention Oracle 12c Enterprise Implementation Guide, available here: http://www.symantec.com/docs/DOC9260
■ Oracle 12c Standard Edition 2 Release 2 (12c SE2 R2) (12.2.0.1) Symantec provides Oracle 12.2.0.1 Standard Edition with Symantec Data Loss Prevention. See the Symantec Data Loss Prevention Oracle 12c Standard Edition 2 Release 2 Installation and Upgrade Guide to install Oracle, available here: http://www.symantec.com/docs/DOC10713 The Symantec Data Loss Prevention database schema is supported on all editions of Oracle. System requirements and recommendations 37 Oracle database requirements
Symantec Data Loss Prevention requires the Oracle database to use the AL32UTF8 character set. If your database is configured for a different character set, the installer notifies you and cancels the installation. You can install Oracle on a dedicated server (a three-tier deployment) or on the same computer as the Enforce Server (a two-tier or single-tier deployment):
■ Three-tier deployment. System requirements for a dedicated Oracle server are listed below. Note that dedicated Oracle server deployments also require that you install the Oracle 12c Client on the Enforce Server computer to communicate with the remote Oracle 12c SE2 instance.
■ Single- and two-tier deployments. When installed on the Enforce Server computer, the Oracle system requirements are the same as those of the Enforce Server. See “Single-tier installation minimum hardware requirements” on page 14. See “Very small installation minimum hardware requirements” on page 15. If you install Oracle on a dedicated server, that computer must meet the following minimum system requirements for Symantec Data Loss Prevention:
■ One of the following operating systems:
■ Microsoft Windows Server 2008 R2 Standard or Enterprise (64-bit)
■ Microsoft Windows Server 2008 R2 SP1 Standard or Enterprise (64-bit)
■ Microsoft Windows Server 2012 R2 Standard, Enterprise, or Datacenter (64-bit)
■ Microsoft Windows Server 2016 Standard or Datacenter (64-bit)
■ Red Hat Enterprise Linux 6.9 (64-bit)
■ Red Hat Enterprise Linux 7.3 through 7.5 (64-bit)
■ Oracle Linux 7.3 or Oracle Linux 7.3 with RHCK (Red Hat compatible kernel)
■ 8-32 GB of RAM
■ 8-16 GB of swap space (equal to RAM up to 16 GB)
■ 500 GB – 1 TB of disk space for the Enforce database On a Linux system, if the Oracle database is on the same computer as the Enforce Server, then the /opt file system must have at least 500 GB of free space for small or medium installations. 1 TB of free space is required for large installations. If Oracle is installed on a different computer from the Enforce Server, then the /opt file system must have at least 10 GB of free space, and the /boot file system must have at least 100 MB of free space. The exact amount of disk space that is required for the Enforce Server database depends on variables such as:
■ The number of policies you plan to initially deploy System requirements and recommendations 38 Browser requirements for accessing the Enforce Server administration console
■ The number of policies you plan to add over time
■ The number and size of attachments you want to store (if you decide to store attachments with related incidents)
■ The length of time you intend to store incidents See the Symantec Data Loss Prevention Administration Guide for more information about developing policies. See the Symantec Data Loss Prevention Oracle Installation and Upgrade Guide for more Oracle installation information.
Browser requirements for accessing the Enforce Server administration console You can access the Enforce Server administration console using any of the following browsers:
■ Microsoft Internet Explorer 10 or 11
■ Mozilla Firefox 58 through 62, and Firefox Enterprise (ESR) 60. You must be using Adobe Flash Player, minimally version 27, to view the Folder Risk Report for Network Discover/Cloud Storage Discover (Incidents > Discover > Folder Risk Report).
Deploying Data Loss Prevention on public cloud infrastructures Symantec supports deployment of Data Loss Prevention servers on Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud public clouds.
Deploying Symantec Data Loss Prevention on Amazon Web Services infrastructure Table 2-12 lists the servers and operating systems that are supported for deployment of Data Loss Prevention on AWS. System requirements and recommendations 39 Deploying Data Loss Prevention on public cloud infrastructures
Table 2-12 Deploying Symantec Data Loss Prevention 12.5 - 15.5 on AWS
Data Loss Prevention servers Operating systems
Enforce Server with Oracle database on the same Microsoft Windows Server 2012 R2 with patch computer (two-tier deployments) Microsoft Windows Server 2016 Oracle database with Amazon RDS (three-tier Red Hat Enterprise Linux 6.8, 6.9, and 6.10 deployments) Red Hat Enterprise Linux 7.3 through 7.5 Cloud Prevent for Email Note: The RHEL 6.x and 7.x AWS AMI distributions Network Prevent for Web require an additional package. See the reference Network Prevent for Email below. Endpoint Prevent Network Discover/Cloud Storage Discover
For more information, see Deploying the Symantec Data Loss Prevention on Amazon Web Services (AWS) Infrastructure at http://www.symantec.com/docs/DOC9520.
Deploying Symantec Data Loss Prevention on Microsoft Azure Table 2-13 lists the servers and operating systems that are supported for deployment of Data Loss Prevention on Microsoft Azure.
Table 2-13 Deploying Symantec Data Loss Prevention on Microsoft Azure
Data Loss Prevention servers Operating systems
Enforce Server with Oracle database Windows Server 2012 R2 with patch Cloud Prevent for Email Windows Server 2016 Network Prevent for Web Red Hat Enterprise Linux 6.8 and 6.9 Network Prevent for Email Red Hat Enterprise Linux 7.3 and 7.4 Endpoint Prevent Network Discover/Cloud Storage Discover
Symantec supports SIR (Symantec Image Recognition) including OCR and Form Recognition with Cloud Prevent for Email on Azure. Symantec supports the use of the Azure load balancer to balance the endpoint client connections to the Endpoint Server.
Deploying Symantec Data Loss Prevention on Oracle Cloud Symantec Data Loss Prevention is supported in the following environments: System requirements and recommendations 40 Virtual server support
■ Oracle Cloud IaaS
■ Oracle Bare Metal Cloud with managed Virtual Machine (VM) instances Table 2-14 lists the servers and operating systems that are supported for deployment of Data Loss Prevention on Oracle Cloud Infrastructure as a Service.
Table 2-14 Deploying Symantec Data Loss Prevention on Oracle Cloud Infrastructure as a Service
Data Loss Prevention servers Operating systems and configuration
Enforce Server with Oracle database on the same Oracle Linux 7.3 with RHCK (Red Hat compatible computer (two-tier deployments) kernel) is required. Network Prevent for Email Endpoint Prevent Network Discover
Note: Three-tier Symantec Data Loss Prevention deployments are not supported on Oracle.
Virtual server support Symantec supports running Symantec Data Loss Prevention servers on VMware ESXi 6.x and Windows Hyper-V virtualization products, provided that the virtualization environment is running a supported operating system.
Note: Symantec Data Loss Prevention Virtual Appliances are supported in a virtualization environment on VMware ESXi 5.5.0 Update 2 and VMware ESXi 6.5.
See “Operating system requirements for servers” on page 21. At a minimum, ensure that each virtual server environment matches the system requirements for servers described in this document. See “Minimum system requirements for Symantec Data Loss Prevention servers” on page 14. Consider the following support information when configuring a virtual server environment:
■ Endpoint Prevent servers are supported only for configurations that do not exceed the recommended number of connected agents.
■ Symantec does not support running the Oracle database server on VMware ESXi 5.x, VMware ESXi 5.x, and VMware ESX 6.x virtual hardware. If you deploy the Enforce Server to a virtual machine, you must install the Oracle database using physical server hardware. System requirements and recommendations 41 Virtual desktop and virtual application support with Endpoint Prevent
■ Symantec supports running the Enforce Server and Oracle database server in a Windows Hyper-V environment.
■ Symantec does not support Single Server installations on virtual machines. A variety of factors influence virtual machine performance, including the number of CPUs, the amount of dedicated RAM, and the resource reservations for CPU cycles and RAM. The virtualization overhead and guest operating system overhead can lead to a performance degradation in throughput for large datasets compared to a system running on physical hardware. Use your own test results as a basis for sizing deployments to virtual machines. See the Symantec Data Loss Prevention Network Monitor and Prevent Performance Sizing Guidelines, available at the Symantec Support Center at http://www.symantec.com/docs/DOC8253, for additional information about running Network Prevent servers on virtual machines.
Virtual desktop and virtual application support with Endpoint Prevent You can deploy the DLP Agent on Citrix and VMware virtual machines to monitor virtual desktops and prevent remote users from copying sensitive data that is accessible through a virtual desktop. Citrix virtualization support The DLP agent is supported to run on the following Citrix XenDesktop virtual workstations and Citrix XenApp server configurations:
■ Citrix XenApp
■ Citrix XenApp 6.5 on Windows Server 2008 Enterprise Edition R2 (64-bit)
■ Citrix XenApp 7.6 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition
■ Citrix XenApp 7.9 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition
■ Citrix XenApp 7.11 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition
■ Citrix XenApp 7.12 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition
■ Citrix XenApp 7.13 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition
■ Citrix XenApp 7.14 on Windows Server 2008 Enterprise Edition R2 (64-bit) and Windows Server 2012 R2 Standard Edition System requirements and recommendations 42 Virtual desktop and virtual application support with Endpoint Prevent
■ Citrix XenApp 7.15 on Windows Server 2016 Standard Edition
■ Citrix XenApp 7.15 Long Term Service Release (LTSR), Update 2 on Windows Server 2016 Standard Edition
■ Citrix XenApp 7.16 on Windows Server 2016 Standard Edition
■ Citrix XenApp 7.17 on Windows Server 2016 Standard Edition
■ Citrix XenApp 7.18 on Windows Server 2016 Standard Edition
Note: Files saved from Microsoft Office (using Save As) to client drives hosted on Citrix XenApp 7.13 through 7.18 are not monitored. However, if you are running Citrix XenApp 7.13 or later with version 7.12 Virtual Delivery Agent (VDA), files saved to client drives (using Save As) are monitored. You can find steps on enabling monitoring for these save operations at the following Symantec Support Center article: http://www.symantec.com/docs/TECH249988
■ Citrix XenApp 7.19 on Windows Server 2016 Standard Edition
■ Citrix XenDesktop
■ Citrix XenDesktop 7.6 on Windows 7 SP1 (32-bit or 64-bit)
■ Citrix XenDesktop 7.9 on Windows 7 SP1 (32-bit or 64-bit), Windows 8.0, 8.1, and Windows 10 (64-bit)
■ Citrix XenDesktop 7.12 on Windows 7 SP1 (32-bit or 64-bit) and Windows 10 (64-bit)
■ Citrix XenDesktop 7.12 on Windows 7 SP1 (32-bit or 64-bit) and Windows 10 (64-bit)
■ Citrix XenDesktop 7.14 on Windows 7 SP1 (32-bit or 64-bit) and Windows 10 (64-bit)
■ Citrix XenDesktop 7.15 on Windows 7 SP1 (64-bit) and Windows 10 RS2 (64-bit)
■ Citrix XenDesktop 7.15 Long Term Service Release (LTSR), Update 2 on Windows 7 SP1 (64-bit) and Windows 10 RS4 (version 1803) (64-bit)
■ Citrix XenDesktop 7.16 on Windows 10 RS2 (64-bit)
■ Citrix XenDesktop 7.17 on Windows 10 RS3 (version 1703) (64-bit)
■ Citrix XenDesktop 7.18 on Windows 10 RS4 (version 1803) (64-bit) System requirements and recommendations 43 Supported operating systems for the EMDI, EDM, and IDM Remote Indexers
Note: Files saved from Microsoft Office (using Save As) to client drives hosted on Citrix XenDesktop 7.13 through 7.18 are not monitored. However, if you are running Citrix XenDesktop 7.13 or later with version 7.12 Virtual Delivery Agent (VDA), files saved to client drives (using Save As) are monitored. You can find steps on enabling monitoring for these save operations at the following Symantec Support Center article: http://www.symantec.com/docs/TECH249988
■ Citrix XenDesktop 7.19 on Windows 10 RS4 (version 1803) (64-bit) VMware virtualization support Symantec supports running the Symantec DLP Agent software on virtual workstations using one of the following:
■ VMware Workstation 6.5.x
Note: VMware Workstation 6.5.x is deprecated in Symantec Data Loss Prevention 15.0.
■ VMware View 4.6
■ VMware Horizon View 6.0.1 and 6.2.1
■ VMware Horizon View 7.1, 7.3.1, 7.4, 7.6, 7.9, and 7.10
■ VMware Fusion 7 (macOS)
■ Hyper-V and Hyper-V (WS 2012 R2)
Supported operating systems for the EMDI, EDM, and IDM Remote Indexers You can install the Remote EMDI Indexer, the Remote EDM Indexer, and the Remote IDM Indexer on the following Windows operating systems:
■ Windows 7 (32-bit) Enterprise, Professional, Ultimate editions
■ Windows 7 (32-bit) (SP1) Enterprise, Professional, Ultimate editions
■ Windows 7 (64-bit) Enterprise, Professional, Ultimate editions
■ Windows 7 (64-bit) (SP1) Enterprise, Professional, Ultimate editions
■ Windows 8.1 (64-bit) Enterprise, Professional
■ Windows 8.1 Update 1 (64-bit) Enterprise, Professional
■ Windows 8.1 Update 2 (64-bit) Enterprise, Professional System requirements and recommendations 44 Third-party software requirements and recommendations
■ Windows 8.1 Update 3 (64-bit) Enterprise, Professional
■ Windows 10 Update [1511] (64-bit] Enterprise, Professional
■ Windows 10 Red Stone Update [1607 - RS1] (64-bit] Enterprise, Professional
■ Microsoft Windows 10 Creators Update (RS2 v1703)
■ Microsoft Windows 10 Creators Update (RS3 v1709)
■ Microsoft Windows 10 Creators Update (RS4 v1803)
Third-party software requirements and recommendations Symantec Data Loss Prevention requires certain third-party software. Other third-party software is recommended. See:
■ Table 2-15 for required software
■ Table 2-16 for required Linux RPMs
■ Table 2-17 for recommended software
Table 2-15 Required third-party software
Software Required for Description
Adobe Reader All systems Adobe Reader is required for reading the Symantec Data Loss Prevention documentation. Download from Adobe.
Apache Tomcat version 9 Enforce Server Required to support the reporting system. The correct version of Tomcat is automatically installed on the Enforce Server by the Symantec DLP Installation Wizard and does not need to be obtained or installed separately.
Java Runtime Environment (JRE) All servers The Symantec DLP Installation Wizard 1.8.0_181 automatically installs the correct JRE version.
Flex SDK 4.6 Network Discover/Cloud Storage Required SDK for Folder Risk Reporting. Discover Server System requirements and recommendations 45 Third-party software requirements and recommendations
Table 2-15 Required third-party software (continued)
Software Required for Description
Napatech driver package 8.0.3 Napatech NT20E2, NT4E, NT40A01, Provides high-speed monitoring. (driver version 3.5.1) (Windows and NT40E3 high-speed packet capture Symantec supports Server 2012 R2 and Windows card Server 2016) and driver package ■ Multiple capture ports per Napatech 8.1.0 (driver version 3.5.0) (RHEL Network capture card 6x/7x) ■ NT40A01 Napatech Network Accelerator ■ NT40E3 and NT20E2 10 gigabit interfaces ■ Multi-threaded packet capture ■ Napatech hardware filtering ■ Napatech third-generation card drivers for Windows and RHEL platforms ■ Virtualized Data Loss Prevention Network Monitor with capture cards as PCI pass-through devices in the VMware ESXi platform Napatech cards are not supported on Single Server installations.
WinPcap 4.1.3 Required for Windows-based Network Windows packet capture library. Monitor Server. WinPcap 4.1.3 is Download from winpcap.org. required for Microsoft Windows Server 2012. Recommended for all Windows-based detection servers.
Endace card driver 5.3.1 Detection servers equipped with an Endace cards are not supported on Endace network measurement card. Single Server installations. Download from Endace. See “Medium installation minimum hardware requirements” on page 18.
VMware Required to run supported components Virtualization software. in a virtualized environment. Download from VMware. See “Virtual server support” on page 40.
Microsoft Active Directory 2003, Required versions for connecting to Provides directory services for Windows 2008 R2, 2012, 2012 R2, or 2016 Active Directory. domain networks. System requirements and recommendations 46 Third-party software requirements and recommendations
In addition to the Linux Minimal Installation, Linux-based Symantec Data Loss Prevention servers require the Red Hat Package Managers (RPM) listed in Table 2-16.
Table 2-16 Required Linux RPMs
Linux-based servers Required RPMs
Enforce Server apr apr-util Oracle server binutils expat libicu Xorg-x11*
*Required only for graphical installation. Console-mode installation does not require an X server.
Network Monitor Server apr apr-util expat libicu Xorg-X11*
*Required only for graphical installation. Console-mode installation does not require an X server.
Red Hat Enterprise Linux version 6 has these additional dependencies:
■ Desktop Platform Development group package (yum groupinstall "Desktop Platform Development")
■ compat-openldap
■ compat-expat1
■ compat-db43
■ openssl098e Red Hat Enterprise Linux version 7 has these additional 64-bit only package dependencies:
■ Server with GUI group package (yum groupinstall "Server with GUI")
■ Dev Tools group package (yum groupinstall "Development Tools")
■ compat-openldap
■ compat-db
■ libpng System requirements and recommendations 47 Third-party software requirements and recommendations
■ compat-libtiff3
■ gtk+-devel
■ gtk2-devel
■ gstreamer
■ libstdc++.so.5
■ libX11
■ libXext
■ libXi
■ libXrender
■ libXtst
■ wget
■ unzip
Note: SeLinux must be disabled on all Linux-based servers.
Symantec recommends the third-party software listed in Table 2-17 for help with configuring and troubleshooting your Symantec Data Loss Prevention deployment.
Table 2-17 Recommended third-party software
Software Location Description
Wireshark Any server computer Use Wireshark (formerly Ethereal) to verify that the detection server NIC receives the correct traffic from the SPAN port or tap. You can also use Wireshark to diagnose network problems between other servers. Download the latest version from Wireshark. dagsnap Network Monitor Server computers that Use in combination with Wireshark to verify that use Endace cards the detection server Endace NIC receives the correct traffic from the SPAN port or tap. Dagsnap is included with Endace cards, and is not required with non-Endace cards.
Sysinternals Suite Any Windows server computer Troubleshooting utilities. Recommended for diagnosing problems on Windows server computers. Download the latest version from Microsoft. System requirements and recommendations 48 Third-party software requirements and recommendations
Table 2-17 Recommended third-party software (continued)
Software Location Description
LDAP browser Enforce Server An LDAP browser is recommended for configuring or troubleshooting Active Directory or LDAP. Chapter 3
Product compatibility
This chapter includes the following topics:
■ Environment compatibility and requirements for Network Prevent for Email
■ Proxy server compatibility with Network Prevent for Web
■ SSL monitoring with Network Monitor
■ Secure ICAP support for Network Prevent for Web using the stunnel service
■ High-speed packet capture cards
■ Veritas Data Insight compatibility with Symantec Data Loss Prevention
■ Integrations with other Symantec products
■ Network Discover/Cloud Storage Discover compatibility
■ Endpoint Prevent supported applications
Environment compatibility and requirements for Network Prevent for Email The Network Prevent for Email Server is compatible with a wide range of enterprise-grade third-party SMTP-compliant MTAs and hosted email services. Consult your MTA vendor or hosted email service for specific support questions. Network Prevent for Email Server can integrate with an MTA or hosted email service that meets the following requirements:
■ The MTA or hosted email service must be capable of strict SMTP compliance. It must be able to send and receive mail using only the following command verbs: HELO (or EHLO), RCPT TO, MAIL FROM, QUIT, NOOP, and DATA. Product compatibility 50 Proxy server compatibility with Network Prevent for Web
■ When running the Network Prevent for Email Server in reflecting mode, the upstream MTA must be able to route messages to the Network Prevent for Email Server only once for each message. You can use an SMTP-compliant MTA that routes outbound messages from your internal mail infrastructure to the Network Prevent for Email Server. For reflecting mode compatibility, the MTA must also be able to route messages that are returned from the Network Prevent for Email Server out to their intended recipients. Network Prevent for Email Server attempts to initiate a TLS connection with a downstream MTA only when the upstream MTA issues the STARTTLS command. The TLS connection succeeds only if the downstream MTA or hosted email service supports TLS. It must also authenticate itself to the Network Prevent for Email Server. Successful authentication requires that the appropriate keys and X509 certificates are available for each mail server in the proxied message chain. See the Symantec Data Loss Prevention MTA Integration Guide for Network Prevent for Email for information about configuring TLS support for Network Prevent for Email servers operating in forwarding mode or reflecting mode.
Proxy server compatibility with Network Prevent for Web Network Prevent for Web Servers use a standard Internet Content Adaptation Protocol (ICAP) interface and support many proxy servers. Table 3-1 indicates the servers and the protocols. Symantec Data Loss Prevention also supports secure ICAP (SICAP).You can set up secure ICAP with Blue Coat ProxySG through the Enforce Server administration console. You can set up other proxies with secure ICAP using stunnel. Use of stunnel for secure ICAP is deprecated in Symantec Data Loss Prevention version 15.1 and will be removed in a subsequent release. See “Secure ICAP support for Network Prevent for Web using the stunnel service” on page 51.
Table 3-1 Network Prevent for Web supported proxy servers
Proxy Supported protocols Configuration information
Blue Coat ProxySG versions 6.6.x and ICAP, SICAP, HTTP, HTTPS, Blue Coat product documentation 6.7 for Network Prevent for Web or FTP proxy
Cisco IronPort S-Series versions 9.1.x, ICAP, HTTP, HTTPS Cisco IronPort product documentation 10.1.x, and 10.5.x 9.1.x and 10.5.x support Secure ICAP 10.1.x does not support SICAP Product compatibility 51 SSL monitoring with Network Monitor
Table 3-1 Network Prevent for Web supported proxy servers (continued)
Proxy Supported protocols Configuration information
F5 BIG-IP System version 12.0.x, ICAP, HTTP, HTTPS See the "Using the F5 Proxy with Symantec 13.1.0.8, 14.1.0 Data Loss Prevention Network Prevent for Web" at the Symantec Support Center at http://www.symantec.com/docs/TECH235856 for information on integrating the F5 BIG-IP System with Network Prevent for Web as an ICAP client-server solution.
Fortinet FortiGate-VM 5.6.x and 6.2.x ICAP, HTTP, HTTPS FortiGate-VM product documentation
McAfee Web Gateway (formerly ICAP, SICAP, HTTP, HTTPS, Secure Web documentation (particularly the Secure Computing Secure Web or FTP proxy chapter that describes setting up Secure Web Webwasher) version 7.7.x, 7.8.2 with a DLP Solution)
Squid Web Proxy versions 3.5.x ICAP, HTTP, HTTPS See the Symantec Data Loss Prevention Integration Guide for Squid Web Proxy
Websense Appliance V5000 and ICAP, HTTP, HTTPS, FTP Does not support redaction. V10000, with Websense Web Security Only supports "Block HTTP/HTTPS". version 8.4 RESPMOD is not supported.
Websense blocks the traffic only when the size of the Symantec Data Loss Prevention rejection message (in the response rule) is larger than 512 bytes. If the rejection message is less than 512 bytes, an incident is generated but the network traffic is not blocked.
SSL monitoring with Network Monitor Symantec has certified Network Monitor to monitor Blue Coat SSL Visibility Appliance. For details, see the article TECH231642 at the Symantec Support Center.
Secure ICAP support for Network Prevent for Web using the stunnel service Support for stunnel is deprecated in version 15.1 and will be removed in a subsequent release. Product compatibility 52 High-speed packet capture cards
Beginning with Symantec Data Loss Prevention 15.1, you can reconfigure your system to use integrated Secure ICAP for Network Prevent for Web instead of stunnel. See the Symantec Data Loss Prevention Administration Guide or online Help for configuration details.
High-speed packet capture cards This topic describes the high-speed packed capture cards that are supported for Network Monitor.
Table 3-2 Supported high-speed packet capture cards
Card Version Driver version
Endace DAG 7.5 G2/G4 (PCI-E) 5.7.1 DAG 10X2 Note: Endace cards for use with Data Loss Prevention are supported on Linux 64-bit systems only. Endace cards are not supported on Single Server installations.
Napatech NT20E2, NT20E3, NT4E, NT40A01, and NT40E3 Driver package 8.0.3 (driver version 3.5.1) for Windows Driver package 8.1.0 (driver version 3.5.0) for Linux Symantec supports the following
■ Multiple capture ports per Napatech Network capture card ■ NT40A01 Napatech Network Accelerator ■ Multi-threaded packet capture ■ Napatech hardware filtering ■ Napatech third-generation card drivers for Windows and RHEL platforms ■ 10 gigabit adapters ■ Virtualized Data Loss Prevention Network Monitor with capture cards as PCI pass-through devices in the VMware ESXi platform Product compatibility 53 Veritas Data Insight compatibility with Symantec Data Loss Prevention
Veritas Data Insight compatibility with Symantec Data Loss Prevention Veritas Data Insight is a separately licensed option to Symantec Data Loss Prevention that helps organizations solve the problem of identifying data owners and responsible parties for information due to incomplete or inaccurate metadata or tracking information. Data Insight provides a connection from the Enforce Server to a Data Insight Management Server.
Table 3-3 Supported versions of Veritas Data Insight and Symantec Data Loss Prevention
Data DLP version DLP version DLP version DLP version DLP version DLP version Insight 14.0 14.5 14.6 15.0 15.1 15.5 version
2.0 - 4.5.1 No No No No No No
4.5.2, 4.5.3 Yes No No No No No
5.0 Yes Yes No No No No
5.1 Yes Yes No No No No
5.1.1 No No Yes Yes Yes Yes
5.2 No No Yes Yes Yes Yes
6.0 No No Yes, on Yes Yes Yes version 14.6 MP1
6.1 No No Yes, on Yes Yes Yes version 14.6 MP2
6.1.1 No No No Yes, on version Yes Yes 15.0 MP1
6.1.2 No No No No Yes Yes
6.1.3 No No No No Yes, on version Yes 15.1 MP1
6.1.4 No No No No No Yes Product compatibility 54 Integrations with other Symantec products
Integrations with other Symantec products This section describes compatibility of various integrations of Symantec Data Loss Prevention with other Symantec products.
Table 3-4 Symantec product compatibility with Symantec Data Loss Prevention
Symantec Version Note DLP DLP DLP DLP DLP DLP product version version version version version version 14.0 14.5 14.6 15.0 15.1 15.5
Symantec PGP 2.63 No No No No No No Universal Gateway Email 3.3.x Yes Yes No Yes Yes Yes
Symantec 7.5 No No No No No No Messaging Gateway (SMG) 8.0 No No No No No No
8200 and 8300 10.0.1.2 Yes Yes No Yes No No Series 10.0.2 Yes Yes No Yes No No
10.5.0-8 Yes Yes No Yes No No
10.5.3 Yes Yes No No No No
10.6.x Yes Yes Yes Yes
Symantec Web 5.0, Yes Yes No No No No Gateway (SWG) 5.0.2.8
5.2.7 No Yes Yes Yes Yes Yes Product compatibility 55 Integrations with other Symantec products
Table 3-4 Symantec product compatibility with Symantec Data Loss Prevention (continued)
Symantec Version Note DLP DLP DLP DLP DLP DLP product version version version version version version 14.0 14.5 14.6 15.0 15.1 15.5
Symantec 12.1, For Yes No No No No No Endpoint 12.1 information Protection RU4 about configuring Symantec Endpoint Protection for use with Network Discover/Cloud Storage Discover and Network Monitor, see the Symantec Data Loss Prevention 14.0 Release Notes.
12.1.5 Yes Yes Yes No No No (12.1 RU5)
12.1.6 No No Yes Yes Yes Yes (12.1 RU6 MP6)
14.0 No No No Yes Yes Yes
14.0.1 No No No Yes Yes Yes and 14.0.1 MP1
Symantec 3.3 Yes Yes Yes Yes No No Encryption Management 3.4 No No Yes Yes Yes Yes Server (DLP Encryption Insight) Product compatibility 56 Network Discover/Cloud Storage Discover compatibility
Network Discover/Cloud Storage Discover compatibility Network Discover/Cloud Storage Discover locates exposed confidential data by scanning a broad range of enterprise data repositories such as: file servers, databases, Microsoft SharePoint, Lotus Notes, Documentum, Livelink, Microsoft Exchange, and Web servers. See “Supported file system targets” on page 56. See “Supported IBM (Lotus) Notes targets” on page 57. See “Supported SQL database targets” on page 57. See “Supported SharePoint server targets” on page 57. See “Supported Exchange Server targets” on page 58. See “Supported file system scanner targets” on page 58. See “Supported Documentum (scanner) targets” on page 59. See “Supported OpenText (Livelink) scanner targets” on page 59. See “Supported web server (scanner) targets” on page 59.
Supported Box cloud storage targets The Box target supports scanning of files and folders in enterprise Box cloud storage accounts.
Supported file system targets The File System target supports scanning of the following network file systems. Supported file servers:
■ CIFS Servers only Supported file shares:
■ CIFS:
■ Windows Server 2008 R2 (SMB 1.0 and 2.0 supported on Windows and Linux Network Discover/Cloud Storage Discover servers)
■ Windows Server 2012 R2 (SMB 1.0 and 2.0 supported on Windows and Linux Network Discover/Cloud Storage Discover servers)
■ Windows Server 2016 (SMB 1.0 and 2.0 supported on Windows and Linux Network Discover/Cloud Storage Discover servers)
■ NFS on Red Hat Enterprise Linux 6.x, and 7.x
■ DFS scanning on Windows 2008 R2, 2012 R2, and 2016. Product compatibility 57 Network Discover/Cloud Storage Discover compatibility
Note: DFS is not supported with Network Protect.
In addition, the File System target supports scanning of the following file types:
■ Microsoft Outlook Personal Folders (.pst files) created with Outlook 2010, 2013, and 2016. The Network Discover/Cloud Storage Discover Server scanning this target must be running a Windows operating system, and Outlook 2007 or later must be installed on that system.
■ File systems on UNIX systems, even if they are not exposed as CIFS or NFS shares. Use the SFTP protocol to provide a method similar to the scans of file shares. You can also scan the local file system on a Linux Network Discover/Cloud Storage Discover Server by listing the path name in the content root. For example, you can enter /home/myfiles.
Supported IBM (Lotus) Notes targets The IBM Notes (formerly known as Lotus Notes) target supports scanning of the following versions:
■ Lotus Notes 8.5.x
■ IBM Notes 9.0.x
The files Notes.jar and NCSO.jar are in the Lotus Notes client installation directory. The manifest version number of these files depend on the Domino server version.
■ Version 8 has a manifest version in the JAR file of 1.5.0
■ Version 9 has a manifest version in the JAR file of 1.6.0
Supported SQL database targets The following SQL Databases were tested with Network Discover/Cloud Storage Discover Target scans:
■ Oracle 11g (11.2.x), 12c (12.1.x), and 18c (12.2.x) (the vendor_name is oracle)
■ SQL Server 2014 and 2016 (the vendor_name is sqlserver)
■ DB2 10.5 (the vendor_name is db2) Contact Symantec Data Loss Prevention support for information about scanning any other SQL databases.
Supported SharePoint server targets The following SharePoint server targets are supported: Product compatibility 58 Network Discover/Cloud Storage Discover compatibility
■ Microsoft Office SharePoint Server 2010 SP2
■ Microsoft Office SharePoint Server 2013 SP1
■ Microsoft Office SharePoint Server 2016
■ Microsoft Office SharePoint Server 2019 Consider the following known issues when implementing the SharePoint Server 2019 server target:
■ Symantec Data Loss Prevention cannot scan a SharePoint Server 2019 target if any folder name or file name on the SharePoint site contains the percentage sign (%) or the number sign (#).
■ Symantec Data Loss Prevention cannot quarantine files for SharePoint Server 2019.
■ You must install the Symantec SharePoint solution to scan SharePoint Server 2019 targets.
Supported Exchange Server targets Symantec Data Loss Prevention supports the following Exchange Server targets:
■ Microsoft Exchange Server 2010 SP3
■ Microsoft Exchange Server 2013
■ Microsoft Exchange Server 2013 SP1
■ Microsoft Exchange Server 2016 (on-premises) To use the Exchange Web Services connector, Exchange Web Services and the Autodiscover Service must be enabled on your Exchange server and are accessible to the Network Discover/Cloud Storage Discover server. You can scan the data objects that are stored within Public Folders, such as:
■ Email messages
■ Message attachments
■ Microsoft Word documents
■ Excel spreadsheets The Exchange scan also targets mail stored in Exchange 2013 and 2016 Personal Archives.
Supported file system scanner targets The following remote Windows systems can be scanned:
■ Windows Server 2008 R2 Product compatibility 59 Network Discover/Cloud Storage Discover compatibility
■ Windows Server 2012 R2
■ Windows Server 2016 The following Linux file systems can be scanned:
■ Red Hat Enterprise Linux 6.x
■ Red Hat Enterprise Linux 7.4 The following AIX file systems can be scanned:
■ AIX 7.1 AIX requires the following C run time libraries, as well as Java 1.8 and Java 8 JRE:
■ xlC.aix50.rte (v8.0.0.0+)
■ xlC.rte (v8.0.0.0+) The following 32-bit Solaris file systems can be scanned (64-bit systems are not supported):
■ Solaris 10 (SPARC platform) Solaris requires the following patch levels for the scanner:
■ Solaris 9, 115697-01 File systems on UNIX systems can also be scanned using the SFTP protocol. This protocol provides a method similar to share-based file scanning, instead of using the File System Scanner. Contact Symantec Professional Services for details.
Supported Documentum (scanner) targets The Documentum scanner supports scanning a Documentum Content Server 5.3.x or 6.6.x, and 6.7 repository. All versions are deprecated in Symantec Data Loss Prevention 15.5. Documentum scanners will be removed in the next release of Symantec Data Loss Prevention.
Supported OpenText (Livelink) scanner targets The Livelink scanner supports scanning of OpenText (Livelink) Server 9.x targets. This version is deprecated in Symantec Data Loss Prevention 15.5. Livelink scanners will be removed in the next release of Symantec Data Loss Prevention.
Supported web server (scanner) targets The web server scanner supports scanning of a static HTTP web site. Product compatibility 60 Endpoint Prevent supported applications
Endpoint Prevent supported applications Table 3-5 describes individual applications that can be monitored using Endpoint Prevent on Windows; Table 3-6 describes browsers that can be monitored using Endpoint Prevent on macOS. Endpoint Prevent enables you to add monitoring support for other third-party applications not listed in the following tables. An example of a third-party application is Thunderbird. You add monitoring support for an application on the Enforce Server administration console. Always test monitoring support for applications before you enable monitoring on a large number of endpoints. Individual applications may need additional filtering settings to maintain acceptable performance. See the Symantec Data Loss Prevention System Administration Guide for more information about configuring and using application monitoring.
Note: Table 3-5 and Table 3-6 assume that you have installed the latest DLP hot fix from Symantec.
Applications supported by Endpoint Prevent on Windows Table 3-5 describes individual applications that can be monitored using Endpoint Prevent on Windows.
Table 3-5 Applications supported on Windows
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
HTTP All All Yes Yes Yes Yes Yes Yes browsers Product compatibility 61 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Secure Internet 6.0 No No No No No No HTTP Explorer (HTTPS) 7.0 No No No No No No
8.0 No No No No No No
9.0 Yes Yes Yes Yes No No (Windows Server 2008 R2)
10.0 Yes Yes Yes Yes Yes Yes (Windows Server 2008 R2)
11.0 Yes Yes Yes Yes Yes Yes (Windows (Windows 7, 8.1 7, 8.1 Enterprise, Enterprise, 10 10 Enterprise, Enterprise, and and Windows Windows Server Server 2012 R2, 2012 R2, Desktop Desktop mode only mode only and EPM and EPM disabled) disabled)
Edge RS1 No No Deprecated No Product compatibility 62 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Yes Yes No (on No (on Windows Windows 10 Creators 10 Creators Update Update [versions [versions 1703 and 1703 and 1709]. The 1709]. The table below table below provides provides details on details on enabling enabling Edge Edge monitoring monitoring for this for this scenario.) scenario.)
Edge, RS2 No No No No Yes Yes continued
RS3 and No No No No Yes Yes RS4
Firefox 2.0 - 5.0 No No No No No No
23 through Yes (35 Yes Yes Yes Yes Yes 46.0.1 through (38-44), 46.0.1 and including through Firefox 47.0 on 64-bit, DLP Agent which was version introduced 14.0.2) in Firefox 43.
51-54 No No Yes Yes Yes Yes
56-61 No No Yes Yes Yes Yes
62 No No No Yes Yes Yes
63 No No No No Yes, on Yes version 15.1 MP1 Product compatibility 63 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Firefox, 64, 65 No No No No No Yes continued
66 No No Yes, on Yes, on Yes, on Yes version version version 14.6 MP3 15.0 MP1 15.1 MP1
67 No No Yes, on No Yes, on Yes, on version version version 14.6 MP3 15.1 MP1 15.5 MP1
68 No No Yes, on No Yes, on Yes, on version version version 14.6 MP3 15.1 MP2 15.5 MP1
69 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP1
70 No No No No Yes Yes
71 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP2
Google 38 through Yes (51 Yes 38-44, Yes Yes Yes Chrome 59 and 52 (Windows 51-57 supported 10 support 58 and 59 on begins with on DLP Windows 51) Agent 10 with 55 on DLP version DLP Agent Agent 14.6 MP1 version version 14.0.2) 14.5 MP1
60 through No No Yes Yes Yes Yes 69
70, 71 No No No No Yes, on Yes version 15.1 MP1 Product compatibility 64 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Google 72, 73 No No Yes, with Yes, with Yes, on Yes, with Chrome, Hotfix Hotfix version Hotfix continued 14.6.0305 15.0.0119 15.1 MP1 15.5.0001. with Hotfix See ALERT See ALERT See ALERT 15.1.0107. 2641 for 2641 for 2641 for details details See ALERT details about the about the 2641 for about the hot fix. hot fix. details hot fix. about the hot fix.
74 No No No No No Yes, with version 15.5 MP1
75 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP1 with Hotfix 15.5.0107. 01001
76 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP1, with Hotfix with Hotfix 15.1.0202.01003 15.5.0107.01001
77 No No No Yes, on Yes, on Yes, on version version version 15.0 MP1 15.1 MP2 15.5 MP1
78 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP2
79 No No No No Yes, on Yes, on version version 15.1 MP2 15.5 MP2 Product compatibility 65 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Instant AIM N/A Yes Yes Yes Yes Yes Yes messaging AIM Pro N/A Yes Yes Yes Yes Yes Yes
AIM6 N/A Yes Yes Yes Yes Yes Yes
Microsoft N/A Yes Yes Yes Yes Yes Yes Office Comm- unicator
Skype N/A Yes Yes Yes Yes Yes Yes
Email Outlook 2007 Yes No No No No No
2010 Yes Yes Yes Yes Yes Yes
2013 Yes Yes Yes Yes Yes Yes
2016 No Yes Yes Yes Yes Yes
2019 No No No No Yes, on Yes 15.1 MP1
Outlook 2007 Yes No No No No No Web Access 2010 Yes Yes Yes Yes Yes Yes (rich and 2013 Yes Yes Yes Yes Yes light mode) 2016 No Yes Yes Yes Yes Yes
Outlook. N/A Yes Yes Yes Yes Yes Yes com
Lotus Notes 6.5 - 8.5 No No No No No No
Lotus Notes 8.5.x Yes Yes (8.5.3) Yes (8.5.3) Yes (8.5.3) Yes (8.5.3) Yes (8.5.3) (IBM Domino) 9.x Yes Yes Yes Yes Yes Yes
FTP N/A Yes Yes Yes Yes Yes Yes Product compatibility 66 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
CD/DVD BsClip N/A Yes Yes Yes Yes Yes Yes
Bs N/A Yes Yes Yes Yes Yes Yes Recorder Gold
BurnAware N/A Yes Yes Yes Yes Yes Yes
Cheetah N/A Yes Yes Yes Yes Yes Yes Burner
Command N/A Yes Yes Yes Yes Yes Yes Burner
CopyToDVD N/A Yes Yes Yes Yes Yes Yes
Creator10 N/A Yes Yes Yes Yes Yes Yes
GEAR for N/A Yes Yes Yes Yes Yes Yes Windows
mkisofs N/A Yes Yes Yes Yes Yes Yes
Nero N/A Yes Yes Yes Yes Yes Yes
Nero Start N/A Yes Yes Yes Yes Yes Yes Smart
Roxio N/A Yes Yes Yes Yes Yes Yes
Roxio N/A Yes Yes Yes Yes Yes Yes RecordNow
Roxio5 N/A Yes Yes Yes Yes Yes Yes
Roxio N/A Yes Yes Yes Yes Yes Yes Mediahub
Silent Night N/A Yes Yes Yes Yes Yes Yes Micro Burner
Star Burn N/A Yes Yes Yes Yes Yes Yes Product compatibility 67 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
Cloud Box 4.0.6169 Yes Yes Yes Yes Yes Yes Sync Apps Most Yes Yes recent version available
Dropbox 3.2.x, 3.2.9 Yes Yes Yes Yes Yes 6.4.x, Version Version Version Version 20.4.x - 20.4.x - 20.4.x - 31.4.x - 8.4.x 29.4.x 29.4.x 38.4.x. 38.4.x 12.4.x, supported supported 13.4.x, on DLP on DLP 14.4.x, Agents Agents 15.4.x, version version 17.4.x, 14.5 MP1. 14.6 MP1. 19.4.x, 20.4.x - 38.4.x
Most Yes Yes recent version available
Microsoft 15.0.4675. Yes Yes, and Yes Yes Yes Yes OneDrive 1003 for OneDrive Win 8.1 Personal (default) and 17.3.4726. OneDrive 0226 and for 17.3.6517. Business 0809 for 17.3.6390. Win 7 0509, x86/x64 17.3.6517. (desktop 0809 client)
Hightail 2.4.7. Yes Yes Yes Yes Yes Yes 1621
Google 3.35.x Yes Yes Yes Yes Yes Backup and Sync 3.37.x Yes Yes Yes Product compatibility 68 Endpoint Prevent supported applications
Table 3-5 Applications supported on Windows (continued)
Feature Software Versions DLP 14.0 DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5
3.41.x Yes Yes
Google 1.20.x, Yes, 1.20.x Yes Yes Yes Yes Yes Drive 1.30.x, Version Version 1.32.x, 2.34.x 2.34.x 2.34.x - supported supported 3.37.x on DLP on DLP Agents Agents version version 14.5 MP1. 14.6 MP1.
Apple 4.0.3.56, Yes Yes Yes Yes Yes Yes iCloud 4.0.5.20
Misc. Adobe Yes Yes Yes Yes Yes Yes Reader
Apple Yes Yes Yes Yes Yes Yes iTunes
Click-to-Run Microsoft No Yes Yes Yes Yes Yes Pro 2013
Roxio_ N/A Yes Yes Yes Yes Yes Yes Central
WebEx N/A Yes Yes Yes Yes Yes Yes Communi- cations Module
Note: Version 14.6.x and 15.0 agents running on Windows 10 Creators Update (versions 1703 and 1709) do not support monitoring Edge by default. You can find details on enabling Edge monitoring for this scenario at the following Symantec Support Center article. http://www.symantec.com/docs/TECH240808
Microsoft Office deprecation Microsoft Office 2007 is deprecated in Symantec Data Loss Prevention 15.0.
Applications supported by Endpoint Prevent on macOS Table 3-6 describes browsers that can be monitored using Endpoint Prevent on macOS. Product compatibility 69 Endpoint Prevent supported applications
Table 3-6 Applications supported by Endpoint Prevent on macOS
Feature Software Software DLP DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5 Version 14.0
Secure Firefox 36.0.4, Yes Yes Yes No No Yes HTTP ESR 31.X (HTTPS) 38 ESR, No No Yes Yes Yes Yes 45 ESR, 45.1.1 ESR, 45.4.0, 46.0.1 ESR, 49.0.2 ESR
49 and 50 No Yes (on Yes Yes Yes Yes DLP Agents, version 14.5 MP1)
51-54 No No Yes Yes Yes Yes
56-61 No No Yes Yes Yes Yes
62 No No No Yes Yes Yes
63 No No No No Yes, on Yes version 15.1 MP1
64, 65 No No No No No Yes
66 No No Yes, on Yes, on Yes, on Yes version version version 15.1 14.6 MP3 15.0 MP1 MP1
67 No No Yes, on No Yes, on Yes, on version version 15.1 version 15.5 14.6 MP3 MP1 MP1
68 No No Yes, on No Yes, on Yes, on version version 15.1 version 15.5 14.6 MP3 MP2 MP1
69 No No No No Product compatibility 70 Endpoint Prevent supported applications
Table 3-6 Applications supported by Endpoint Prevent on macOS (continued)
Feature Software Software DLP DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5 Version 14.0
Firefox, Yes, on Yes, on continued version 15.1 version 15.5 MP2 MP1
70 No No No No Yes Yes
71 No No No No Yes, on Yes, on version 15.1 version 15.5 MP2 MP2
Safari 6.0.x, Yes No No No No No 7.0.x., and 8.0.x
9.1 No Yes (on Yes Yes No No macOS 10.11)
10.0.x No Yes (for Yes Yes Yes Yes DLP Agents, version 14.5 MP1 on macOS 10.11.6)
10.1.x No No Yes (for Yes (on Yes (macOS Yes DLP macOS 10.11, Agents, 10.11.x, 10.12.1, version 10.12.1, 10.12.2, and 14.6 MP1 10.12.2, 10.12.3) on macOS and 10.11.6) 10.12.3) No (on No (on macOS macOS 10.12.4) 10.12.4, 10.12.5, and 10.12.6)
11 No No Yes Product compatibility 71 Endpoint Prevent supported applications
Table 3-6 Applications supported by Endpoint Prevent on macOS (continued)
Feature Software Software DLP DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5 Version 14.0
Yes (on macOS 10.12.4 and later)
12 No Yes (on Yes macOS 10.12.6 and later starting on DLP Agent version 15.1 MP1)
Google 41.0.x Yes Yes No No No Yes Chrome
50 No Yes Yes Yes Yes Yes
51 Yes (on Yes Yes Yes Yes Yes DLP Agent version 14.0.2)
52 Yes (on Yes Yes Yes Yes Yes DLP Agent version 14.0.2)
53 Yes Yes Yes Yes Yes Yes
55 Yes 14.5 Yes Yes Yes Yes MP1
56 No No Yes Yes Yes Yes
57 No No Yes Yes Yes Yes
58 No No Yes Yes Yes Yes (starting on DLP Agent version 14.6 MP1) Product compatibility 72 Endpoint Prevent supported applications
Table 3-6 Applications supported by Endpoint Prevent on macOS (continued)
Feature Software Software DLP DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5 Version 14.0
Google 59 No No Yes Yes Yes Yes Chrome, (starting on continued DLP Agent version 14.6 MP1)
60 through No No Yes Yes Yes Yes 69
73 No No No No No Yes
74 No No No No No Yes, on version 15.5 MP1
75 No No No No Yes, on Yes, on version 15.1 version 15.5 MP2 MP1
76 No No No No Yes, on Yes, on version 15.1 version 15.5 MP2 MP1, with Hotfix 15.5.0106.01001
77 No No No Yes, on Yes, on Yes, on version version 15.1 version 15.5 15.0 MP1 MP2 MP1
78 No No No No Yes, on Yes, on version 15.1 version 15.5 MP2 MP2
79 No No No No Yes, on Yes, on version 15.1 version 15.5 MP2 MP2
Email Outlook 2011 No Yes Yes Yes Yes Yes
2016 No No Yes Yes Yes Yes Product compatibility 73 Endpoint Prevent supported applications
Table 3-6 Applications supported by Endpoint Prevent on macOS (continued)
Feature Software Software DLP DLP 14.5 DLP 14.6 DLP 15.0 DLP 15.1 DLP 15.5 Version 14.0
Outlook, 2019 No No No No Yes, on Yes continued version 15.1 MP1 with DLP Agent Hotfix 15.1.0106 .01005, available from Symantec Support.
Instant Cisco Jabber N/A No Yes Yes Yes Yes Yes Messaging Skype N/A No Yes Yes Yes Yes Yes
Support for monitoring applications protected by System Integrity Protection The DLP Agent monitors applications that are protected by System Integrity Protection (SIP) on macOS 10.11, 10.12, 10.13, and 10.14. You can find the latest macOS version support at the following Symantec Support Center article: http://www.symantec.com/docs/TECH235226