DOCUMENT LIBRARY

FortiDLP Policies Reference Guide

Home FortiDLP Policies 8.3.0 FortiDLP Policies Reference Guide

8.3.0

Changes

Changes

The following table lists the recent changes to FortiDLP Policy Templates between software versions.

Version	Change
8.3.0	Added General Availability (GA) support for Secure Data Flow (web origin-aware detections) for Windows and macOS. Added GA support for Linux data identification. Added GA support for Safari browser monitoring. Updated browser policy templates to support the user account that logged in to a website as a data variable (`website_user`) in detection descriptions and display message actions. Removed the User account domains (Preview) and Monitor unknown user accounts (Preview) parameters from the File downloaded from IP address template.
8.2.1	Updated browser upload and download templates to report the Agent MIME type in detection metadata instead of the browser MIME type. Updated the Sensitive file transferred to remote destination template to improve tracking of the destination IP address and reduce false positives resulting from file downloads. Updated the Password entered on website opened from Outlook and Password entered on website templates to prevent reporting of inaccurate account names in detection metadata.
8.2.0	Added the Network share activity template. Updated all file path parameters to require valid glob-style file path expressions. Updated the Sensitive file downloaded from personal file share website and Sensitive file uploaded to personal file share website templates to improve parameter clarity and optionally monitor unknown user accounts. Updated the Failed login attempt, Login with unauthorized account, and Successful login after multiple failed attempts templates to improve the association of failed and successful login events. Updated the Cloud sync folder activity template to optimize MIME type inspection requests and ignore .crswap files. Updated the Sensitive file renamed template to correctly retrieve file origin data. Updated the File uploaded to instant messaging application out-of-the-box policy template to ignore the Telegram Desktop folder by default in order to reduce false positives. Removed the Application window titles parameter from the Sensitive file transferred via Bluetooth or AirDrop policy template.

Previous

Next

Changes

Changes

The following table lists the recent changes to FortiDLP Policy Templates between software versions.

Version	Change
8.3.0	Added General Availability (GA) support for Secure Data Flow (web origin-aware detections) for Windows and macOS. Added GA support for Linux data identification. Added GA support for Safari browser monitoring. Updated browser policy templates to support the user account that logged in to a website as a data variable (`website_user`) in detection descriptions and display message actions. Removed the User account domains (Preview) and Monitor unknown user accounts (Preview) parameters from the File downloaded from IP address template.
8.2.1	Updated browser upload and download templates to report the Agent MIME type in detection metadata instead of the browser MIME type. Updated the Sensitive file transferred to remote destination template to improve tracking of the destination IP address and reduce false positives resulting from file downloads. Updated the Password entered on website opened from Outlook and Password entered on website templates to prevent reporting of inaccurate account names in detection metadata.
8.2.0	Added the Network share activity template. Updated all file path parameters to require valid glob-style file path expressions. Updated the Sensitive file downloaded from personal file share website and Sensitive file uploaded to personal file share website templates to improve parameter clarity and optionally monitor unknown user accounts. Updated the Failed login attempt, Login with unauthorized account, and Successful login after multiple failed attempts templates to improve the association of failed and successful login events. Updated the Cloud sync folder activity template to optimize MIME type inspection requests and ignore .crswap files. Updated the Sensitive file renamed template to correctly retrieve file origin data. Updated the File uploaded to instant messaging application out-of-the-box policy template to ignore the Telegram Desktop folder by default in order to reduce false positives. Removed the Application window titles parameter from the Sensitive file transferred via Bluetooth or AirDrop policy template.

Previous

Next