DLP patterns is not recognized

DLP patterns is not recognized

2358
Created On 11/16/22 19:52 PM - Last Modified 07/30/25 19:44 PM


Symptom


Uploading a file which includes sensitive information like credit card information does not trigger DLP profile.

Environment


PAN-OS 10.1.x 

Cause



 

Resolution


  • Review the config using the following link;
https://docs.paloaltonetworks.com/enterprise-dlp/enterprise-dlp-admin/set-up-enterprise-data-loss-prevention/set-up-the-enterprise-dlp-plugin-on-panorama/enable-enterprise-data-loss-prevention#idc2d2990e-af15-43d6-9e76-5e6afa3f9ac9
  • Check the Data filtering profile on panorama 
  • Check if Panorama has device certificate installed and valid
profile on panorama.png
  • Check the DLP cloud connectivity status on the firewall 
>show ctd-agent status security-client
connectivity on firewall.png
  • Check if DLP tenant-id is assigned on panorama;
>show system state | match cfg.platform.dlp_tenant_id 
  • Check the global counter using the following command;
>show counter global filter delta yes | match wif
  • For testing upload a file which contains credit card or any other sensetive information to the following site;
https://dlptest.com/
  • Check the security rule on the firewall is matching If yes check the logs under monitor >Data filtering 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZuMCAU&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language