Using File Server Resource Manager (FSRM) to Locate and Classify Sensitive Data such as Credit Card Numbers Stored Inside of Documents
Using File Server Resource Manager (FSRM) to Locate and Classify Sensitive Data such as Credit Card Numbers Stored Inside of Documents
Scenario:
Corporate policy states that sales employees should not be storing customer credit card information especially credit card numbers on the file servers. As the administrator of the file sever you have been tasked with locating any files that have what look like suspected credit card numbers based on known numerical stings. You want to automate the process and classify the card based off of vender.
I will be classifying the files based on the following expressions:
Visa / Master Cards – ####-####-####-####
American Express – ####-######-#####
Let’s get started.
For testing purposes you will need to create a directory structure that contains files that meet the query criteria.
1. Launch the File Server Resource Manager from the Tools dropdown menu in Server Manager.
2. Expand Classification Management.
3. To create a classification property either Right click on Classification Properties and click on Create Local Property or select Create Local Property in the Actions Panel
4. In the Create Local Classification Property dialog box, give the property a Name, I will be naming mine Credit Card Numbers. In the Properties type drop box select Yes/No click OK.
5. To create a classification rule Right click on Classification Rules and select Create New Rule or select Create Classification Rule in the Actions pane.
6. On the General tab of Create Classification Rule type the desired name, click Scope tab.
7. On the Scope tab click Add, then browse to the appropriate directory structure, click OK, then click the Classification tab.
8. On the Classification tab, verify Content Classifier it selected and Credit Card Numbers is selected in the Property drop dropdown box. Select Configure.
9. We will be creating a Regular expression that represents a credit card number. In this case I will be using the expression:
\d{4}-\d{4}-\d{4}-\d{4}
Note: The above expression “\d” variable for digits and “{4}” defines the number of digits.
Then click OK
10. On the Evaluation Type tab, select Re-evaluate existing properties values and select the Overwrite the existing values and check both the Clear Automatically Classified Properties and Clear User Classified Properties. Then click OK
Repeat Steps 5 through 10 to create a Classification Rule for American Express Cards numbers if desired.
Once the Classification Rules have been created use the following steps to execute the rules.
1. Inside of the FSRM Right click on Classification Rules and select Run Classification With All Rules Now or select Run Classification With All Rules Now from the Actions pane.
2. Depending on the number of files that need to be evaluated choose whether or not to wait for the classification to finish. I will be choosing to wait click OK
3. The following screen shot show the files that were classified as containing possible credit card numbers. It also Identifies the Classification Rule that was used to Classify the document.
At this point you could use FCI File Management Tasks to move or set permissions on the files.
Related blogs that will show you how to use the FSRM to classify files, move files and or set RMS Encryption on the discovered files.
Installing FSRM.
Using FSRM to move documents that contain sensitive information such as Credit Card Numbers to a more secure location.
Using FSRM to implement RMS Encryption on files that contain sensitive information such as Credit Card Numbers.
Until next time … RIDE SAFE!
Rick Trader
Windows Server Instructor – Interface Technical Training
Phoenix, AZ
You May Also Like
Classification Management, classify sensitive data, Clear Automatically Classified Properties, Clear User Classified Properties, Create Classification Rule, Create Local Property, FCI, File Management Tasks, File Server Resource Manager, FSRM, Regular expression, RMS Encryption, Server Manager
A Simple Introduction to Cisco CML2
0 3852 0Mark Jacob, Cisco Instructor, presents an introduction to Cisco Modeling Labs 2.0 or CML2.0, an upgrade to Cisco’s VIRL Personal Edition. Mark demonstrates Terminal Emulator access to console, as well as console access from within the CML2.0 product. Hello, I’m Mark Jacob, a Cisco Instructor and Network Instructor at Interface Technical Training. I’ve been using … Continue reading A Simple Introduction to Cisco CML2
Cable Testers and How to Use them in Network Environments
0 713 1This content is from our CompTIA Network + Video Certification Training Course. Start training today! In this video, CompTIA Network + instructor Rick Trader demonstrates how to use cable testers in network environments. Let’s look at some tools that we can use to test our different cables in our environment. Cable Testers Properly Wired Connectivity … Continue reading Cable Testers and How to Use them in Network Environments
Government Edition – Encrypting a USB Flash Drive in Windows 10
0 272 2In this video, Security Instructor Mike Danseglio demonstrates how to use BitLocker in Window 10 to secure files on a USB Flash drive that adhere to stricter data protection requirements as found inside Government entities. BitLocker 2-day instructor-led training is now available at Interface: BITLOCK: Planning and Deploying BitLocker Drive Encryption Training Video Transcription: Hi. … Continue reading Government Edition – Encrypting a USB Flash Drive in Windows 10
Pingback: Using File Server Resource Manager (FSRM) to Move Files
Pingback: Using File Server Resource Manager (FSRM) to protect files with RMS Encryption