Using File Server Resource Manager (FSRM) to Locate and Classify Sensitive Data such as Credit Card Numbers Stored Inside of Documents

Home > Blogs > Windows Server 2012 > Using File Server Resource Manager (FSRM) to Locate and Classify Sensitive Data such as Credit Card Numbers Stored Inside of Documents

Using File Server Resource Manager (FSRM) to Locate and Classify Sensitive Data such as Credit Card Numbers Stored Inside of Documents

Like This Blog 2 Rick Trader
Added by April 13, 2015

Scenario:

Corporate policy states that sales employees should not be storing customer credit card information especially credit card numbers on the file servers. As the administrator of the file sever you have been tasked with locating any files that have what look like suspected credit card numbers based on known numerical stings. You want to automate the process and classify the card based off of vender.

I will be classifying the files based on the following expressions:

Visa / Master Cards – ####-####-####-####

American Express – ####-######-#####

Let’s get started.

For testing purposes you will need to create a directory structure that contains files that meet the query criteria.

1. Launch the File Server Resource Manager from the Tools dropdown menu in Server Manager.

001-FSRM-File-Server-Resource-Manager

2. Expand Classification Management.

002-Classicfication-FSRM-File-Server-Resource-Manager

3. To create a classification property either Right click on Classification Properties and click on Create Local Property or select Create Local Property in the Actions Panel

003-Create-Local-Property-Classicfication-FSRM-File-Server-Resource-Manager

4. In the Create Local Classification Property dialog box, give the property a Name, I will be naming mine Credit Card Numbers. In the Properties type drop box select Yes/No click OK.

004-Create-Local-Property-Classicfication-FSRM-File-Server-Resource-Manager

5. To create a classification rule Right click on Classification Rules and select Create New Rule or select Create Classification Rule in the Actions pane.

005-Create-Local-Property-Classicfication-FSRM-File-Server-Resource-Manager

6. On the General tab of Create Classification Rule type the desired name, click Scope tab.

006-Create-Rule-FSRM-File-Server-Resource-Manager

7. On the Scope tab click Add, then browse to the appropriate directory structure, click OK, then click the Classification tab.

007-Create-Rule-FSRM-File-Server-Resource-Manager

8. On the Classification tab, verify Content Classifier it selected and Credit Card Numbers is selected in the Property drop dropdown box. Select Configure.

008-Create-Rule-FSRM-File-Server-Resource-Manager

9. We will be creating a Regular expression that represents a credit card number. In this case I will be using the expression:

\d{4}-\d{4}-\d{4}-\d{4}

Note: The above expression “\d” variable for digits and “{4}” defines the number of digits.

Then click OK

009-Classification-Parameters-Create-Rule-FSRM-File-Server-Resource-Manager

10. On the Evaluation Type tab, select Re-evaluate existing properties values and select the Overwrite the existing values and check both the Clear Automatically Classified Properties and Clear User Classified Properties. Then click OK

010-Classification-Rule-FSRM-File-Server-Resource-Manager

Repeat Steps 5 through 10 to create a Classification Rule for American Express Cards numbers if desired.

Once the Classification Rules have been created use the following steps to execute the rules.

1. Inside of the FSRM Right click on Classification Rules and select Run Classification With All Rules Now or select Run Classification With All Rules Now from the Actions pane.

011-FSRM-File-Server-Resource-Manager

2. Depending on the number of files that need to be evaluated choose whether or not to wait for the classification to finish. I will be choosing to wait click OK

012-Run-Classification-FSRM-File-Server-Resource-Manager

3. The following screen shot show the files that were classified as containing possible credit card numbers. It also Identifies the Classification Rule that was used to Classify the document.

013-Run-Classification-FSRM-File-Server-Resource-Manager

014-Run-Classification-FSRM-File-Server-Resource-Manager

015-Run-Classification-FSRM-File-Server-Resource-Manager

016-Run-Classification-FSRM-File-Server-Resource-Manager

At this point you could use FCI File Management Tasks to move or set permissions on the files.

Related blogs that will show you how to use the FSRM to classify files, move files and or set RMS Encryption on the discovered files.

Installing FSRM.

Using FSRM to move documents that contain sensitive information such as Credit Card Numbers to a more secure location.

Using FSRM to implement RMS Encryption on files that contain sensitive information such as Credit Card Numbers.

Until next time … RIDE SAFE!

Rick Trader
Windows Server Instructor – Interface Technical Training
Phoenix, AZ

Videos You May Like

Agile Methodology in Project Management

0 156 0

In this video, you will gain an understanding of Agile and Scrum Master Certification terminologies and concepts to help you make better decisions in your Project Management capabilities. Whether you’re a developer looking to obtain an Agile or Scrum Master Certification, or you’re a Project Manager/Product Owner who is attempting to get your product or … Continue reading Agile Methodology in Project Management

Windows 10 Features and Navigation – December 1, 2015

0 117 1

In this recorded Windows 10 webinar from December 1,2015, Windows Instructor Steve Fullmer presents the navigation and some of the new features associated with Windows 10 including Sysinternals Tools for Windows Client, Windows core concepts, exploring Process Explorer as well as some of the features that are not yet ready for prime time but will … Continue reading Windows 10 Features and Navigation – December 1, 2015

Detailed Forensic Investigation of Malware Infections – April 21, 2015

4 630 5

How does an investigator hunt down and identify unknown malware? In this recording of our IT Security training webinar on April 21, 2015, Security expert Mike Danseglio (CISSP / CEH) performed several malware investigations on infected computers and identify symptoms, find root cause, and follow the leads to determine what’s happening. He demonstrated his preferred … Continue reading Detailed Forensic Investigation of Malware Infections – April 21, 2015

Write a Comment

See what people are saying...

  1. Pingback: Using File Server Resource Manager (FSRM) to Move Files

  2. Pingback: Using File Server Resource Manager (FSRM) to protect files with RMS Encryption

Share your thoughts...

Please fill out the comment form below to post a reply.