Add Custom Match Criteria to a Predefined Data Pattern
Clone a predefined regex data pattern on
Strata Cloud Manager
to add custom match
criteria to enhance detection and prevention of data exfiltration.
Where Can I Use This?
What Do I Need?
Prisma Access (Managed by Strata Cloud Manager)
SaaS Security
NGFW (Managed by Strata Cloud Manager)
Enterprise Data Loss Prevention (E-DLP)
license
Prisma Access (Managed by Strata Cloud Manager)
—
Prisma Access
license
SaaS Security
—
SaaS Security
license
NGFW (Managed by Strata Cloud Manager)
—Support and
AIOps for NGFW Premium
licenses
Or any of the following licenses that include the
Enterprise DLP
license
Prisma Access
CASB license
Next-Generation
CASB for Prisma Access and NGFW (CASB-X)
license
Data Security
license
Clone a predefined regular expression (regex) data pattern to add specific inclusion
or exclusion and provide custom match criteria to enhance detection and prevention
of data exfiltration of sensitive data. This allows users to enhance predefined
regex data pattern with more customized match criteria.
Add the custom match criteria to specify data to include or exclude from
inspection and verdict rendering.
Up to 50,000 characters are supported in each field. You can add multiple
custom data match criteria requirements in a single field separated by a
semicolon (
;
). You specify one, some, or all custom
data match criteria.
Include Matches Starting With
—Inclusive match
criteria to inspect for and trigger
Enterprise DLP
enforcement
for only data matches starting with one or more of the criteria
added.
This field is an AND operator.
Include Matches End With
—Inclusive match
criteria to inspect for and trigger
Enterprise DLP
enforcement
for only data matches ending with one or more of the criteria
added.
This field is an AND operator.
Exclude Matches Starting With
—Exclude match
criteria from
Enterprise DLP
inspection and enforcement for
data matches starting with one or more of the criteria added.
This field is an OR operator.
Exclude Matches Ending With
—Exclude match
criteria from
Enterprise DLP
inspection and enforcement for
data matches ending with one or more of the criteria added.