Managing Sensitive Content Manager Submissions
From the Sensitive Content Submission Maintenance page, ControlPoint Compliance Administrators can:
·monitor the progress of jobs that have been submitted to Sensitive Content Manager for compliance scanning
·view a detailed analysis of compliance scan results
·manage compliance actions
·resubmit previously scanned jobs
·delete jobs
To launch the Sensitive Content Submission Maintenance page:
From the Manage pane, choose Compliance > Sensitive Content Submission Maintenance.
Select the type of scan jobs you want to view/edit. Use the information in the following table for guidance.
In addition the current Status of each job (e.g., Uploading, Waiting for Results, Completed), ControlPoint displays the number of items within each job that are:
·Submitted by ControlPoint to the Sensitive Content Manger service for scanning
·Uploaded to Sensitive Content Manager
·Reviewed (scanned)
·Skipped (omitted from the scan; for example, if Sensitive Content Manager was unable to read an item's contents)
·Unsupported by Sensitive Content Manager
NOTE: For a list of supported file types, see Submitting Content to Sensitive Content Manager.
·In Queue (waiting to be scanned).
You can also link to:
§a Detailed Analysis of compliance scan results
§the Compliance Summary page, where you can manage compliance scan results
§the ControlPoint Task Audit for the job.
Resubmitting Scanned Jobs
When you resubmit a job from this page, it will be submitted exactly as originally defined. (For example, it will not include any files that have been added to a SharePoint list or library since the last scan.) However, any items that have been quarantined since the last scan or have already been flagged "Unsupported" will not be included in the submission.
Jobs that are uploading, have a status of "Compliance Actions Taken," or use a Profile that no longer exists cannot be resubmitted. If you want a set of files for which actions have been taken to be rescanned, create and submit a new job for the same scope.
Deletintg Scanned Jobs
If you attempt to delete one or more scanned jobs, you will be prompted to confirm your selection.
Note that:
·you cannot delete a job that has files in quarantine, and the option will be disabled (you can, however, use the Manage Scanned Files action to remove quarantined files from SharePoint).
AND
·you will have the opportunity to deselect any file that has had an Approval Workflow compliance action applied.
Managing Compliance Action Scan Results
Members of the ControlPoint Compliance Administrators group can view and take action on Content Analysis scan job results returned by the Sensitive Content Manager via the Compliance Summary page. You can:
·view the details of a Compliance Action job
·apply Compliance Actions
·view detailed information about scan results for individual items (and reclassify items that returned from Sensitive Content Manager with a status of "Unable to Classify")
·manage scanned files (including those that have been quarantined)
·save items of a particular severity level as a selection that can be used to perform ControlPoint operations.
To manage Compliance Action scan results:
1Select the object(s) containing the scan jobs you want to view/edit.
2Choose Compliance > Compliance Summary.
NOTE: You can also access this page for a specific job from the Analyze Content page, via the Page View link.
3If you want to view jobs for a different date range, change the Start and/or End dates and click [Find Scan Jobs].
4Select the type of scan jobs you want to view/edit. Use the information in the following table for guidance.
|
If you want to view ... |
Select ... |
|---|---|
|
all jobs submitted to Sensitive Content Manager via the ControlPoint Analyze Content action, regardless of whether Compliance Actions were applied |
Bulk scans. |
|
all jobs for which Compliance Actions have been applied. |
Compliance Action jobs. |
5Click [Find scan jobs].
6Select the job whose details you want to view.
The following details about the selected job display beneath the grid:
·Classification Result Counts - The number of items that fall into each classification
·Scan information - Description of and metrics associated with the job itself
·Scan Results Summary - A pie chart that shows the distribution of items among classifications.
To save items of a selected severity as a ControlPoint selection:
1.Select a classification from the 
2Follow the procedure for Saving and Re-Using a SharePoint Object Selection.
Acting on Compliance Analysis Results
From the Compliance Summary page, you can take a number of compliance actions on returned SCM scans. Use the information in the following table to determine the appropriate action to take.
NOTE: Any option that is not valid for the result set is not available for selection. For example, if you are viewing Compliance Action jobs, the option to Apply Compliance Actions will be disabled.
|
If you want to ... |
Then ... |
|---|---|
|
view more detailed information about scan results for individual items (and, optionally, export results for closer analysis) |
·from the Sensitive Content Submission Maintenance page,select the applicable Detailed Analysis View link. OR ·from the Compliance Summary page, click [View Detailed Classification Analysis]. Note that there is a separate tab for each classification, with detail about each item for which scan results were returned. If you want to download a tabs-worth of results: a)Choose one of the following export formats: §XLS format (for opening in a pre-2007 version of Excel) §Excel XML format (for opening in Excel 2007 or later) §PDF format b)Click [Export]. |
|
re-classify an item that returned "Unable to Classify" |
see Reclassifying Items Returned as Unable to Classify. If you want an action to be taken on any items that were returned by Sensitive Content Manager as 'Unable to Classify,' you must reclassify them before applying Compliance Actions to the scan job. |
|
manage scanned files |
|
|
apply Compliance Actions to the selected job |
a)From the Compliance Summary page, click [Apply Compliance Actions]. NOTE: This option is not available if you filtered results by Compliance Action Jobs. b)Either: §select a previously-defined Compliance Action from the drop-down OR §define a new Compliance Action. WARNING: If you choose to Update Existing Compliance Actions, the changes will be applied to all scan jobs that use it going forward.
c)When finished, click [Apply actions to current scan]. |
|
view items for which Compliance Actions have been taken |
from the Compliance Summary page, click [View Items Affected by Compliance Actions]. Note that there is a separate tab for each action taken, with a list of items and the associated classifications returned by Sensitive Content Manager. If you want to download a tabs-worth of results: a)Choose one of the following export formats: §XLS format (for opening in a pre-2007 version of Excel) §Excel XML format (for opening in Excel 2007 or later) §PDF formal b)Click [Export]. |
|
download items of a particular severity level (Mild, Moderate. or Severe) as a reusable selection on which you can perform ControlPoint operations |
a)from the Compliance Summary page drop-down to the right of the b)Click [Get Selection]. You can now download and save the file, then upload it as a selection when performing a ControlPoint operation that involves list items. See Saving and Re-Using a SharePoint Object Selection. |
NOTE: If you want to review compliance actions for a selected scope and date range, you can generate a Compliance Actions Audit.
Reclassifying Items Returned as Unable to Classify
If an item is returned from Sensitive Content Manager with a Classification of 'Unable to Classify,' it means that the service detected "probable" sensitive content but was unable to classify it definitively as sensitive content. You can, however, review the file and apply a classification manually before applying a Compliance Action to the scan job.
If you want an action to be taken on any items that were returned by Sensitive Content Manager as 'Unable to Classify,' you must reclassify them before applying Compliance Actions to the scan job.
To reclassify items returned as 'Unable to Classify':
1From the Detailed Security Classification Analysis page, select the Unable to Classify tab.
2Select the item(s) to which you want to apply a particular classification.
NOTE: If you want to review the contents of an item before assigning a classification, click the URL link to open the item.
3Select a classification from the drop-down, then click [Reclassify].
You will be prompted to confirm the action before continuing.
CAUTION: Once you reclassify an item, the drop-down becomes disabled and the item cannot be reclassified again. If Compliance Actions have already been applied to the scan job containing the item(s), the Reclassify option will no longer appear on the page.
Once an item has been reclassified:
·it will be moved to the appropriate tab for the classification
AND
·the classification change(s) will be reflected on the Compliance Summary page.