Forum Discussion

Level 6

14 years ago

Solved

CA Filtering

Has anyone had much success with filtering out spam or newsletters from capture in Compliance Accelerator? I've added domains and smtp addresses to EV's xml filter, but still see these items get captured for review. Looking for any other suggestions as to how to keep them out of our review sets...

Best Practice

Compliance Accelerator

Information Governance

Tip-How to

mashles
14 years ago
ACE is being replaced by DCS which is integration into Symantecs DLP product (formerly Vontu) for classification, it can do some very clever classification of emails. They can be based on almost anything so creating classifications based on author like requested above is simple. Based on the classification you can choose to do a number of things (delete item, apply specific retention category, apply specific CA tag etc).

Until then your best bet would be to use custom filtering to apply a different retention category to exclude from the CA searches. Your active sampling will still include some of these results because it samples all all of a users email to be compliant, even if its a newsletter. Excluding emails from sampling is technically possible if you do a hard delete of the items at the journal level using custom filtering, but you are not compliant if you do that!

Hope that helps.

3 Replies

Replies have been turned off for this discussion

Mojorsn
Level 5
14 years ago
We are looking for this exact same thing, it seems like CA is very limited in what can be filtered out without additional software.

We have looked into ACE to accomplish this but were told there will be a new software coming out that will be replacing this. Does anyone have any information on this new software and what it will/won't be able to do?

Also any suggestions for the original question in this post would be greatly appreciated.

Thanks.

Tom
mashles
Level 3
14 years ago
ACE is being replaced by DCS which is integration into Symantecs DLP product (formerly Vontu) for classification, it can do some very clever classification of emails. They can be based on almost anything so creating classifications based on author like requested above is simple. Based on the classification you can choose to do a number of things (delete item, apply specific retention category, apply specific CA tag etc).

Until then your best bet would be to use custom filtering to apply a different retention category to exclude from the CA searches. Your active sampling will still include some of these results because it samples all all of a users email to be compliant, even if its a newsletter. Excluding emails from sampling is technically possible if you do a hard delete of the items at the journal level using custom filtering, but you are not compliant if you do that!

Hope that helps.
Kenneth_Adams
Level 6
14 years ago
ACE is good for all CA versions 7.x through 9.x. DCS replaced ACE for EV/CA 10 and above.

What ACE and DCS will do is place a tag on the message to exclude or include in CA review sets, depending on how the ACE policy or DCS rule is configured. An exclusion tag will case the message to not be included in any CA review set UNLESS as search is configured to return only hits with the exclusion tagging.

I hope this helps.

Ken

Forum Discussion

CA Filtering

3 Replies

Related Content

NetBackup CA

backupTime ge invalid OData filter

CAS Server

NBU IT Analytics 11.2 - Custom Reports and Filters

10.1.1 - Web UI Activity Monitor Filtering

Recent Discussions

Importing Search criteria using an XML file into CA

Compliance Accelerator Deep Dive On Wednesday Dec. 18th

Is it possible to remove the CLOSED button from an esclation reviewer in CA?

Exclude Items From Search Results

Upgrading Compliance Accelerator to 12.2 from 11.0.1