Enterprise DLP
Enable Exact Data Matching (EDM)
Table of Contents
Enable Exact Data Matching (EDM)
Enable Exact Data Matching (EDM) on Strata Cloud Manager and the DLP app on the
hub.
On May 7, 2025, Palo Alto Networks is introducing new Evidence Storage and Syslog Forwarding service IP
addresses to improve performance and expand availability for these services
globally.
You must allow these new service IP addresses on your network
to avoid disruptions for these services. Review the Enterprise DLP
Release Notes for more
information.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
Or any of the following licenses that include the Enterprise DLP license
|
Exact Data Matching (EDM) is an advanced detection tool to monitor and protect sensitive data
from exfiltration. Use EDM to detect sensitive and personally identifiable
information (PII) such as social security numbers, Medical Record Numbers, bank
account numbers, and credit card numbers, in a structured data source such as
databases, directory servers, or structured data files (CSV and TSV), with high
accuracy. You must first enable EDM for Enterprise Data Loss Prevention (E-DLP) to upload hash
encrypted EDM data sets to the DLP cloud services to use as match criteria in advanced data profiles.
It might take 24-48 hours for Palo Alto Networks to enable EDM functionality.
- Log in to Strata Cloud Manager.Select .Enable EDM.Review and Close the EDM confirmation that your OCR enablement request was successfully submitted.
![]()
Strata Cloud Manager displays Enablement Request Sent while your enablement request is pending.Set up the EDM CLI App.EDM functionality is enabled when you can download the EDM CLI application and view the table where uploaded EDM data sets will be displayed.
