Sending notifications to violators

You can send a policy violation notice to the address of the violator (the sender of the message that caused the incident). Sending of such notifications may be part of the incident processing procedure in place at your organization.

A copy of this notification is also sent to the violator's manager if the manager's address is available in Active Directory.

This operation can be performed if an email client is installed and configured on your computer.

To send a notification to a violator:

1. In the Management Console tree, select the Incidents node.

   A table with a list of incidents appears in the workspace.

2. Select an incident in the list. Click the View button or select the View item in the context menu of the incident.

   The Incident details window with detailed information about the selected incident opens. The Sender field shows the violator's address in the form of a link.

3. Click the link in the Sender field.

   This opens the window of the default email client on your computer. The window displays the text of the new message that looks like this:

   Hello. A message with the subject "<message subject>" was sent from your address <violator's address> on <message date and time> to the following recipients: <addresses of message recipients>. This message contained confidential data, which contravenes the corporate Information Security Policy.

4. You can edit the notification text if necessary. Then send the notification using the email client.

The notification is sent to the violator and the violator's manager if the manager's address can be retrieved from Active Directory.

You can also configure the policy settings to have policy violation notifications sent to the violator at the time when the incident is generated.

Page top