Enterprise DLP
Enable Exact Data Matching (EDM)
Table of Contents
Enable Exact Data Matching (EDM)
Enable Exact Data Matching (EDM) on Strata Cloud Manager and the DLP app on the hub.
On May 7, 2025, Palo Alto Networks is introducing new Evidence Storage and Syslog Forwarding service IP
addresses to improve performance and expand availability for these services
globally.
You must allow these new service IP addresses on your network
to avoid disruptions for these services. Review the Enterprise DLP
Release Notes for more
information.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
Or any of the following licenses that include the Enterprise DLP license
|
Exact Data Matching (EDM) is an advanced detection tool to monitor and protect sensitive data from exfiltration. Use EDM to detect sensitive and personally identifiable information (PII) such as social security numbers, Medical Record Numbers, bank account numbers, and credit card numbers, in a structured data source such as databases, directory servers, or structured data files (CSV and TSV), with high accuracy. You must first enable EDM for Enterprise Data Loss Prevention (E-DLP) to upload hash encrypted EDM data sets to Enterprise DLP to use as match criteria in advanced data profiles.
- Log in to Strata Cloud Manager.Select .Enable Exact Data Matching (EDM).
![]()
Enterprise DLP automatically enables EDM on your tenant.![]()
Set up the EDM CLI app and upload EDM datasets to Enterprise DLP.- Review the Supported EDM dataset formats to understand the data format types Enterprise DLP supports.Set up the EDM CLI app to begin uploading EDM datasets to Enterprise DLP.Configure the EDM CLI app connectivity to enable connectivity between the EDM CLI app and Enterprise DLP.Upload an EDM dataset to Enterprise DLP.
