For DLP activation, you must install the CDSx browser extension on your endpoint. This extension works with the DLP agent to monitor and enforce security policies on web-based activities.
Note
The extensions are not enabled for Incognito or InPrivate modes in Chrome and Edge. It is recommended to disable these modes in the organization.
Navigate to Modules → Data Security → Endpoint Data-in-Motion Rules → Endpoint DLP Settings.
For Cortex Data Security Extension (Web DLP Channel), select the browser extension activation mode. Refer to Configure endpoint DLP settings for more information.
Use a managed deployment platform like UEM, MDM, or group policy to push the browser extension to the endpoints.
Refer to the steps below to download the registry file (reg file), install, and configure settings to activate the extension on the endpoints.
Important
Endpoints should be linked to the domain.
Select one of the following managed installation options:
1. Managed installation from group policy
Extension ID & URL:
aalncdhjokfcbldaemnehledpfpibopi;file:///C:\ProgramData\Cyvera\Everyone\CDSX\extension.xml
2. Managed installation from Intune
Extension ID & URL:
aalncdhjokfcbldaemnehledpfpibopi;file:///C:\ProgramData\Cyvera\Everyone\CDSX\extension.xml
3. Managed installation on Edge
You must first deploy the CDSx extension from the Microsoft Edge policy.
From the Microsoft 365 admin center, navigate to Settings+Microsoft Edge.
Select the Configuration policies tab, and select +Create Policy.
Enter a name (example: CDSx Extension Deployment), add an optional description, select the Policy type , and then click Next.
In Settings, select +Add Setting. Search and select the ExtensionInstallForcelist policy.
In the setting Control which extensions are installed silently, paste the following:
aalncdhjokfcbldaemnehledpfpibopi;file:///C:\ProgramData\Cyvera\Everyone\CDSX\extension.xmland then click Next.In the Assignments section, select the target users or security groups and click Next.
Review the settings and then click Review and create to complete the process.
4. Managed installation from the registry in Windows
Install/uninstall the extension using the following files:
Instead of step 1, you can also add the following to the registry using
reg IMPORT <file.reg>:Windows Registry Editor Version 5.00 ; ===== Start CDSX Policy ; Chrome [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome\ExtensionSettings] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome\ExtensionSettings\aalncdhjokfcbldaemnehledpfpibopi] "installation_mode"="force_installed" "update_url"="file:///C:\\ProgramData\\Cyvera\\Everyone\\CDSX\\extension.xml" "toolbar_pin"="force_pinned" ; Edge [HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Edge\ExtensionSettings] [HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Edge\ExtensionSettings\aalncdhjokfcbldaemnehledpfpibopi] "installation_mode"="force_installed" "update_url"="file:///C:\\ProgramData\\Cyvera\\Everyone\\CDSX\\extension.xml" "toolbar_state"="force_shown" ; ===== End CDSX Policy
To enable the DLP browser extension on your endpoint, you must either create a configuration profile in JAMF or upload a predefined configuration profile in your MDM solution.
The predefined signed configuration profile includes the settings that are signed and cannot be modified. An unsigned version is also provided, should you prefer to sign yourself. Refer to DLP MDM profile for macOS to download the signed or unsigned configuration profile.DLP MDM profile for macOS
Note
It is highly recommended to refer to Install the Cortex XDR Agent using JAMF for a comprehensive overview of setting up a JAMF profile.Install the Cortex XDR Agent Using JAMF
The following steps describe how to create a new configuration profile in JAMF to enable the DLP browser extension on your endpoint:
From Configuration Profiles, click New.
In the General page, enter a name and description.
From the left pane, under the Options tab, select Application & Custom Settings and then click Upload.
Add the following configuration details for each web browser:
Chrome:
Preference Domain: com.google.Chrome
Property List:
<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>ExtensionSettings</key> <dict> <key>aalncdhjokfcbldaemnehledpfpibopi</key> <dict> <key>installation_mode</key> <string>force_installed</string> <key>toolbar_pin</key> <string>force_pinned</string> <key>update_url</key> <string>file:///Library/Application Support/PaloAltoNetworks/Traps/cdsx/extension.xml</string> </dict> </dict> </dict> </plist>
Edge:
Preference Domain: com.microsoft.Edge
Property List:
<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>ExtensionSettings</key> <dict> <key>aalncdhjokfcbldaemnehledpfpibopi</key> <dict> <key>installation_mode</key> <string>force_installed</string> <key>toolbar_state</key> <string>force_shown</string> <key>update_url</key> <string>file:///Library/Application Support/PaloAltoNetworks/Traps/cdsx/extension.xml</string> </dict> </dict> </dict> </plist>
Click Save.