Why Is the "Send sanitized version of blocked files only if redacted" Option Grayed Out Under DLP Settings?

This article is applied to MetaDefender Email Gateway Security releases deployed on Windows systems.

Please ensure that DLP is included in your MetaDefender Core license and that it is enabled in the workflow used by Email Gateway Security (EGS) on MetaDefender Core.

This article explains why the option "Send sanitized version of blocked files only if redacted" may be unavailable (grayed out) under the Data Loss Prevention settings in MetaDefender Email Gateway Security, and outlines the steps to enable it.

This setting is only effective when Proactive DLP is licensed and properly configured in MetaDefender Core, and when other dependent options in both Core and EGS are enabled.

Resolution:

Please follow the steps below to activate this option:

Steps:

Configure Proactive DLP in MetaDefender Core
- Go to MetaDefender Core > Workflow > MetaDefender Email Gateway Security > Proactive DLP
- Enable at least one detection type:
  - SSN, CCN, IPv4, or CIDR
- Also enable under the detection type:
  - Redact hits
  - Allow if detections at or above threshold are redacted

Configure Security Rules in EGS
- Go to: EGS > Security Rules to modify a security rule.
  - Advanced Threat Prevention tab
    - Set Handling of the email to Delete blocked contents

Zero-Day Malware Prevention tab
- Enable:
  - Override sanitization behavior
  - Send sanitized version of blocked files

Once the above conditions are met, the grayed-out "Send sanitized version of blocked files only if redacted" under DLP option on EGS will become selectable.

If Further Assistance is required, please proceed to log a support case or chatting with our support engineer.

Last updated on

Was this page helpful?