Troubleshooting Tip: Difference in FortiSASE DLP action when using SSL/TLS and STARTTLS in Outlook
| Description | This article describes the behavior of DLP in FortiSASE when different protocols are used in Outlook. |
| Scope | FortiSASE. |
| Solution | If the Outlook application settings are the ones shown in Screenshot 1 below, FortiSASE will remove the attachment and send the email to the recipient. The sender will not receive any intimation suggesting a violation of any policy. The encryption method used in this case is SSL/TLS.
However, if the application settings are the ones shown in Screenshot 2 below, FortiSASE will block the message and inform the sender that the email has been blocked because it violates the network policy. The encryption method used in this case is STARTTLS.
This behavior can be observed in the DLP logs in FortiSASE as shown below:
Screenshot 1:
Screenshot 2:
|
