CA Data Protection is a compliance and surveillance solution and there can be motivation for end users to circumvent, disable, or otherwise avoid the attentions of CA Data Protection. One such way of doing this is to disable the CA Data Protection MS Outlook add-in, which enables policy appplication to incoming and outgoing mails.
Microsoft Outlook 2010 and above have a "Manage Add-ins" option that can allow some Outlook add-ins to be disabled.
CA Data Protection 14.x/ 15.x with Microsoft Outlook 2010 or later.
In the instance where you wish to stop user disabling the add-in, this can be controlled via Group Policy.
You can specify which add-ins are always enabled by configuring the List of managed add-ins policy setting.
The example below illustrates the steps required for Office 2013, and while the process is applicable to other versions of MS Office, the registry settings may differ:
1. Open the Group Policy Editor and locate here:
User Configuration/Administrative Templates/Office 2013 application name/Miscellaneous
2. Double-click the List of managed add-ins Group Policy and select Enable option.
3. Click the List of managed add-ins Show... button. You will see a dialog with Value name and Value column.
4. In "Value name," specify the programmatic identifier (ProgID) for COM add-ins.
To obtain the ProgID for an add-in, use Registry Editor on the client computer where the add-in is installed to locate key names under HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Outlook\Addins or HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Outlook\Addins.
5. In "Value," specify the value as follows:
To specify that an add-in is always disabled (blocked), type 0.
To specify that an add-in is always enabled, type 1.
To specify that an add-in is configurable by the user and not blocked by the "Block all unmanaged add-ins" policy setting when enabled, type 2.
6. Click OK two times to close the List of managed add-ins dialog box.
7. Restart Outlook 2013 for the List of managed add-ins Group Policy to take effect.