>
    Strata Copilot
    Review an End User Coaching Exemption
    Focus
    Download PDF
    Focus
    1. Home
    2. Enterprise DLP
    3. Administration
    4. Monitor Enterprise DLP
    5. End User Coaching
    6. Review an End User Coaching Exemption
    Download PDF
    Enterprise DLP

    Review an End User Coaching Exemption

    Table of Contents

    Review an End User Coaching Exemption

    Data security administrators can review an exemption for traffic that generated an Alert or Block DLP incident using End User Coaching to allow or deny an exemption for the end user.
    1. Log in to Strata Cloud Manager.
    2. Select ConfigurationData Loss PreventionDLP Incidents and review your Enterprise DLP incidents.
    3. In the Incidents list, review the Response Status column and locate the DLP incidents with an Exception requested.
    4. Click the Incident ID for the DLP incident to view the incident details.
    5. The Response Management section displays the following information.
      • Request Date—Date end user requested an exemption from the DLP rule that blocked a file upload.
        Format is YYYY-Month-DD HH:MM:SS UTC.
      • Requested By—User-ID for the end user that requested the exemption. User-ID derived from GlobalProtect or Prisma Access Agent user mapping.
    6. In the Response Management section, respond to the exemption request.
      • Approve—Grants the end user an exemption for the specific traffic that generated the DLP incident. The end user can now reattempt the traffic that generated the DLP incident.
      • Deny—Denies the end user an exemption for the specific traffic that generated the DLP incident.
      • No Change—Selected by default when an end user requests an exemption but the exemption has not been approved or denied by an admin.
    7. Save.

    © 2026 Palo Alto Networks, Inc. All rights reserved.