Enterprise Vault™ Compliance Accelerator Administrator's Guide

Last Published:
Product(s): Enterprise Vault (14.2)
  1. Introducing Compliance Accelerator
    1.  
      Key features of Compliance Accelerator
    2.  
      About the Compliance Accelerator components
    3.  
      The Compliance Accelerator process
    4.  
      About randomly sampling items with Compliance Accelerator
    5.  
      About the intelligent review feature in Compliance Accelerator
    6.  
      About the deduplication feature in Compliance Accelerator
    7. Product documentation
      1.  
        White papers on the Veritas Support website
  2. Introducing the Compliance Accelerator client
    1.  
      About the Compliance Accelerator client
    2.  
      Opening the Compliance Accelerator client
    3.  
      Finding your way around the Compliance Accelerator client
  3. Setting up employees and employee groups
    1.  
      About employees and employee groups
    2.  
      Creating employee profiles
    3.  
      Mapping employee properties to Active Directory or Domino directory attributes
    4.  
      Editing the details of employees
    5.  
      Creating employee groups
    6. Assigning roles to employees
      1.  
        About the predefined Compliance Accelerator roles
      2.  
        About the Compliance Accelerator permissions
      3.  
        Creating Compliance Accelerator roles
      4.  
        Editing the properties of Compliance Accelerator roles
      5.  
        Assigning Compliance Accelerator roles to employees or groups
      6.  
        Deleting Compliance Accelerator roles
  4. Working with departments
    1.  
      About departments
    2.  
      Creating departments
    3.  
      Adding monitored employees and groups to departments
    4.  
      Editing the monitoring policy for employees and groups
    5.  
      Moving employees or groups between departments
    6.  
      Moving departments
    7.  
      Assigning department reviewers, compliance supervisors, and delegates
    8. Implementing Chinese Walls security
      1.  
        Enabling Chinese Walls
      2.  
        Managing Department Users
    9. Managing exception employees
      1.  
        Designating employees as exceptions
      2.  
        Assigning further exception reviewers to an exception
      3.  
        Moving an exception employee to another department
      4.  
        Removing exception status
      5.  
        Removing exception reviewers
    10. Grouping departments into partitions
      1.  
        Creating department partitions
    11. Using attributes to classify departments
      1.  
        Setting up department attributes
      2.  
        Assigning attributes to departments
  5. Searching for items
    1. About searching with Compliance Accelerator
      1.  
        Limitations on searching certain types of Skype for Business content
    2.  
      Creating and running Compliance Accelerator searches
    3.  
      About the search criteria options
    4.  
      Guidelines on conducting effective searches
    5.  
      Pausing and resuming Compliance Accelerator searches
    6.  
      About the Monitor Searches tab
    7.  
      Searching the items of exception employees
    8.  
      Selecting the archives in which to search
    9. Building Compliance Accelerator search schedules
      1.  
        Setting up new search schedules
      2.  
        Examples of recurring search schedules
    10.  
      Setting up custom message types
    11. Using hotwords to search for items
      1.  
        Defining hotwords to search for
      2.  
        Adding hotwords
      3.  
        Editing existing hotwords
      4.  
        Deleting hotwords
      5.  
        Adding hotword sets
      6.  
        Editing existing hotword sets
      7.  
        Deleting hotword sets
      8.  
        Importing the predefined hotwords
      9.  
        Enabling the analysis of hotwords
      10.  
        Hotword analysis error handling
    12.  
      Configuring how Compliance Accelerator handles email addresses
    13.  
      Using Compliance Accelerator to search archived Skype for Business content
  6. Manually reviewing items
    1. About reviewing with Compliance Accelerator
      1.  
        Limitations on reviewing certain types of Skype for Business content
    2.  
      About the Review pane
    3.  
      Viewing the hotword statistics for an item in review
    4.  
      How the Prevent self-review option limits the reviewing activities of exception employees
    5.  
      Filtering the items in the Review pane
    6.  
      Assigning review marks to items
    7.  
      Adding comments to items
    8.  
      Viewing the history of items
    9.  
      Displaying printable versions of items
    10.  
      Downloading the original versions of items
    11.  
      Copying the item list to the Clipboard
    12.  
      Changing how the Review pane looks
    13.  
      Setting your Review pane preferences
    14. Escalating items
      1.  
        Assigning escalated items to other escalation reviewers
      2.  
        Closing escalated items
    15.  
      Storing reviewing comments for reuse
  7. Working with research folders
    1.  
      About research folders
    2.  
      Creating research folders
    3.  
      Editing the properties of research folders
    4.  
      Copying items to research folders
    5.  
      Reviewing the items in research folders
    6.  
      Exporting items from research folders
    7.  
      Giving other users access to your research folders
    8.  
      Committing research folder items to the department review set
    9.  
      Removing items from research folders
    10.  
      Deleting folders
  8. Exporting items
    1. About exporting items
      1.  
        Limitations on exporting certain types of content
    2. Performing an export run
      1.  
        How to decrypt RMS-protected items
    3.  
      About the limits on the number of simultaneous export runs
    4.  
      How to optimize export runs
    5.  
      Exporting items from the review set of an exception employee
    6.  
      Making the export IDs visible in Microsoft Outlook
  9. Creating and viewing reports
    1.  
      About the Compliance Accelerator reports
    2.  
      Creating Compliance Accelerator reports
    3. Available Compliance Accelerator reports
      1.  
        Compliance Supervisor Responsibility report
      2.  
        Department Roles Detail report
      3.  
        Department Roles Summary report
      4.  
        Differential Sampling Summary by Department report
      5.  
        Effective Roles by User report
      6.  
        Evidence of message type Review by Department/Employee reports
      7.  
        Item Aging by Department report
      8.  
        Message Stats Summary report
      9.  
        Message Summary report
      10.  
        Monitored IDs by Department report
      11.  
        Questioned Items by Department report
      12.  
        Responsibility by Department report
      13.  
        Responsibility by Reviewer report
      14.  
        Review Activity Summary by Department report
      15.  
        Reviewer Activity by Department report
      16.  
        Reviewer Activity Detail report
      17.  
        Reviewer Mapping report
      18.  
        Unreviewed Departments report
      19.  
        Unsupervised Departments report
    4.  
      Viewing existing reports
    5.  
      Deleting reports
    6. About viewing Compliance Accelerator datasets using the OData web service
      1.  
        Available Compliance Accelerator datasets
      2.  
        Accessing the Compliance Accelerator datasets
      3.  
        Using the OData service with Microsoft Excel
      4.  
        Using the OData service with Microsoft SQL Server Reporting Services (SSRS)
  10. Appendix A. Customizing Compliance Accelerator
    1.  
      Specifying the Windows domains with which to synchronize employee details
    2.  
      Customizing the reviewing action statuses
    3. Setting Compliance Accelerator system configuration options
      1.  
        Ad Hoc Searches configuration options
      2.  
        Diagnostics configuration options
      3.  
        Document Conversion configuration options
      4.  
        Export/production configuration options
      5.  
        General configuration options
      6.  
        Home Page configuration options
      7.  
        Hotword Analysis configuration options
      8.  
        Item Prefetch Cache configuration options
      9.  
        Item Prefetch Cache (Advanced) configuration options
      10.  
        Policy Integration configuration options
      11.  
        Profile Synchronization configuration options
      12.  
        Random Capture configuration options
      13.  
        Reviewing configuration options
      14.  
        Search configuration options
      15.  
        Security configuration options
      16.  
        System configuration options
      17.  
        Vault Directory Synchronization configuration options
    4.  
      Customizing the columns in the Review pane
  11. Appendix B. Importing configuration data from an XML file
    1.  
      About importing configuration data
    2.  
      Sample XML files
    3.  
      Format of the Dataload.xml file
    4.  
      Importing the configuration data
    5. About the ImportExport command
      1.  
        ImportExport syntax
      2.  
        Examples of ImportExport commands
  12. Appendix C. Troubleshooting
    1.  
      A security warning may appear when you preview certain items in the Review pane of the Compliance Accelerator client
    2.  
      Issues with the random sampling of items
    3.  
      Display issues when you run the Compliance Accelerator client in Windows 8 or later
    4.  
      Display issues when you open a Compliance Accelerator website in Internet Explorer 10 or later
    5.  
      Vault stores not displayed in the Compliance Accelerator client
    6.  
      Compliance Accelerator searches return unexpected results
    7.  
      Errors when exporting items from Compliance Accelerator
    8.  
      TNEF-encoded attachments to Internet Mail (.eml) messages may not be readable after you export the messages from a review set
    9.  
      Synchronization errors after you rename the SQL Server computer
    10.  
      Performance counter errors when the Accelerator Manager service starts
    11.  
      SQL Service Broker warning when restoring a customer database to a different server
    12. Issues with Compliance Accelerator reports
      1.  
        Prompt to install SQL Server when printing a report for the first time
      2.  
        Reports that you export as CSV may not open properly in Microsoft Excel
      3.  
        Garbled Japanese characters when exporting reports in Acrobat format
      4.  
        Troubleshooting OData errors

How to decrypt RMS-protected items

Compliance Accelerator exports RMS-protected SMTP journal items in the encrypted format on the Compliance Accelerator server. You need to use the command-line utility, EmlDecryptor.exe, to decrypt all RMS-protected items.

EmlDecryptor.exe decrypts the contents of the item, creates an unencrypted version of the EML file, and stores it in a separate folder at the same location as the source folder. EmlDecryptor.exe is installed as a part of the Enterprise Vault API Runtime or the Enterprise Vault services installation on the Compliance Accelerator server.

Before you run EmlDecryptor.exe, do the following:

  • Install the Active Directory Rights Management Services Client 2.1.

  • Confirm whether Compliance Accelerator has exported any RMS-protected items by generating an export or a production run report.

  • Ensure that the EmlDecryptor.exe and EmlDecryptor.ini files are located in the Enterprise Vault API Runtime installation folder.

To use EmlDecryptor.exe to decrypt RMS-protected items

  1. Use a text editor to edit the EmlDecryptor.ini file with the following details:

    • The licensing intranet URL of the rights management services (RMS) server.

    • The licensing extranet URL of the rights management services (RMS) server.

    • The unique application ID for the service principal in a tenant, which your service uses for interacting with Azure Rights Management Services.

    • The globally unique identifier (GUID) of the tenant. The tenant ID is tied to the Active Directory in Azure.

    For example,

    ;This is the configuration file for the EmlDecryptor utility.
;EmlDecryptor.exe is a command-line utility, which decrypts 
;all Azure RMS-protected SMTP emails available in the 
;export/production location of the Discovery/Compliance 
;Accelerator export/production run.

;All parameters in this ini file must be specified and should 
;not be empty.

;The licensing intranet URL of the rights management services 
;(RMS) server.
RMSIntranetUrl=https://<RMSLicensingIntranetUrl>

;The licensing extranet URL of the rights management services 
;(RMS) server.
RMSExtranetUrl=https://<RMSLicensingExtranetUrl>

;The unique application ID for the service principal in a 
;tenant, which your service uses for interacting with 
;Azure Rights Management Services.
ApplicationPrincipalId=<ApplicationPrincipalId>

;The globally unique identifier (GUID) of the tenant. The 
;tenant ID is tied to the Active Directory in Azure.
BposTenantId=<BposTenantId>
  2. Log on to the Compliance Accelerator server as a Compliance Accelerator administrator.
  3. Run EmlDecryptor.exe from the command line. For example,

    c:\Program Files (x86)\Enterprise Vault>EmlDecryptor.exe

  4. EmlDecryptor.exe prompts you to enter the following details:

    • <Source Directory Path>. Enter the location where the RMS-protected SMTP emails are exported after the export run or the production run.

    • <Symmetric Key>. Enter the 256-bit AES symmetric key that is used to verify the application.

    EmlDecryptor.exe validates the provided information and starts the conversion process.

When EmlDecryptor.exe executes successfully, it stores the decrypted files along with a CSV report in a separate folder within the source directory path. For example, if the source directory path is C:\Compliance Accelerator Export\customer_name, the decrypted files and the CSV report are stored in the C:\ExportRun\customer_name_decrypted<DateTime> folder.

If you encounter any issues when running the EmlDecryptor.exe utility, enable DTrace on the utility and run it again.