Create an IDM (Enhanced) Fingerprint

Create Fingerprint (Legacy)

You can only use Legacy Fingerprints with Skyhigh CASB.

1. Go to Policy > DLP Policies > Fingerprints.
2. On the Fingerprints page, go to Create Fingerprint > Unstructured Fingerprint > Create Fingerprint.
3. On the Create an Unstructured Fingerprint page, configure the following:
   

1. Fingerprint Name. Enter a name for the Unstructured Fingerprint.
2. Location to scan. Enter the path to the computer that holds the files you want to fingerprint. Click + to add more paths, if necessary. For example:
   • Unix. file://localhost/etc/folderA
   • Unix. file:///etc/folderB
   • Windows. file:///c:/WINDOWS/file.doc
   • Windows. file:///WINDOWS/file.doc
   • Windows. file://localhost/WINDOWS/file.doc
3. Location to store generated hashes. Enter the path to the folder where your locally generated hashed files are stored. Space allocated for this should be about 10–20% of the size of input paths/folders. For example:
   • Unix. file://localhost/etc/folderA
   • Unix. file:///etc/folderB
   • Windows. file:///c:/WINDOWS/file.doc
   • Windows. file:///WINDOWS/file.doc
   • Windows. file://localhost/WINDOWS/file.doc
4. File type exclusions. Enter any file types to be excluded. (Archive files such as ZIP files are automatically excluded.)

3. Click Save. 

Create Enhanced Unstructured Fingerprint

Create an Unstructured Data Fingerprint for files in one or more folders. These fingerprints are evaluated per DLP policy to match against sensitive content in the cloud.

1. Go to Policy > DLP Policies > Fingerprints.
2. On the Fingerprints page, go to Create Fingerprint > Unstructured Fingerprint > Create Enhanced Fingerprint.
3. The Create an Enhanced Unstructured Fingerprint page provides the following tabs:
   • Configure Fingerprint
   • Ignored Text
     
4. Fingerprint Name. Enter a name for the Enhanced Fingerprint
5. Under the Configure Fingerprint tab, configure the following information:
   1. Location to scan. Enter the path of your system where you want to store the fingerprint files. Click + to add more paths, if necessary. For example:
      • Unix. file:///etc/folderB
      • Unix. /etc/folderB
      • Unix. file:///etc/folderA/file.txt
      • Unix. /etc/folderA/file.txt
      • Windows. file:///c:/folderB/file.doc
      • Windows. c:\folderB\file.doc
      • Windows. file:///c:/folderC/folderA
      • Windows. c:\folderC\folderA
      • Windows. \\Server1\Share\folderB
   2. Classification. You can define classification criteria for the document or file you want to fingerprint. Select the classifications you want to assign to your fingerprints from the Select Classifications cloud card.
      

3. Location to store generated hashes. Enter the path to the folder where your locally generated hashed files are stored. Space allocated for this should be about 10–20% of the size of input paths/folders. For example:
   • Unix. file:///etc/folderB
   • Unix. /etc/folderB
   • Windows. file:///c:/folderC/folderA
   • Windows. c:\folderC\folderA
   • Windows. \\Server1\Share\folderB
4. File type exclusions. Enter any file types to be excluded. (Archive files such as ZIP files are not automatically excluded.)

5. Under the Ignored Text tab, configure the text to ignore when processing file content, such as boilerplate, legal disclaimers, and copyright information.
   • Ignored text path located here. Enter the path to the file that includes the Ignored Text to skip during the file processing. 
     

For both Legacy and Enhanced Fingerprint, the new Unstructured Fingerprint is created and appears on the Fingerprint page. You must now generate an index of the fingerprint to use it in a DLP Policy. 

Generate an Index