Forum Widgets
Latest Discussions
How Can We Extend Data Protection Beyond Microsoft 365?
Hey everyone, I am running into a bit of a roadblock. I am trying to find a way to ensure consistent data classification and protection across our diverse IT landscape. While Microsoft Protection Policies are greeat for Microsoft Solutions, I'm struggling to extend that coverage to systems like SAP and our HR solution. Has anyone else faced a similar challenge? I'd love to hear any tips or solutions ou've come up with.
Purview -> DLP -> Settings -> Endpoint DLP Settings
I have configured Browser and Domain Restrictions to sensitive data, with a condition as a sensitivity label. I used the Allow for a whitelist for sites, and all others should be blocked. I created and assigned a DLP. I assigned the DLP to sharepoint/Onedrive/devices, allsites/all users&groups/all users&groups. The sensitivity label is published\assigned. But it is not blocking the web sites. What am I missing? My understanding is that DLP policies should inherit the DLP settings by default. I cannot seem to 'on-board' devices in Purview. As it is greyed out. I have MS Business Premium, which includes MS Defender for Business, MS InTune.
How do I exclude certain part of email from being scanned?
Hi there, I have enabled client-side auto Sensitivity labelling for emails in a tenant for PII detection using pre-built SIT & Trainable Classifiers. However, the issue is that the Email signature automatically makes the check true and applies the label automatically, which I want to avoid. Is there a way for me to exclude the signature part of the email from being excluded?
Inconsistent application of DLP policies
Trying to test the application of DLP policies on our tenant and seeing very inconsistent results. I have testing files, and am also testing in the email body. The only SIT that the policy seems to correctly identify and provide the tooltip with override is the txt file with test CC numbers. It will also properly alert if CC numbers are in the body of the email. It will not alert on CC numbers in the xlsx. It won't alert on any of the other SITs, in either txt, xlsx or email body. The alert, when it fires, looks correct. In some cases it seems the policy is blocking the content going out, but not giving the user prompt. In other cases it doesn't seem to recognize the SIT. Policy rule is SIT's shared from Exchange to external user.
Custom list for policy exemptions
Hello Team, we are researching the features for MS Purview and are comparing to our current (Forcepoint) system. One thing we have not been able replace is the ability to add an exemption list. Currently in our DLP policies we filter on Sensitivity Labels (or its keyword equivalent) and then can add a dictionary that contains a list of exemptions. Does anyone know if that is possible in purview?
Transitioning to a new region for Purview
Is there documentation that can assist if you need to export all your current Purview configurations ( DLP policies, Label Policies, IRM Policies, SITs, Classifications etc...) to a new region. I'm really hoping there is a easy way of doing this or a way to just change setting of current region. Hoping all configurations do not need to be created from scratch and deployed...... Any hindsight would be greatly appreciated!!!How do I exclude certain part of email from being scanned?
Hi there, I have enabled client-side auto Sensitivity labelling for emails in a tenant for PII detection using pre-built SIT & Trainable Classifiers. However, the issue is that the Email signature automatically makes the check true and applies the label automatically, which I want to avoid. Is there a way for me to exclude the signature part of the email from being excluded?Auto labelling policy configuration for over 100K sites. Excluding over 10k in the same policy
I am in the process of rolling out IP label via Auto labelling policies. There are over 100K sites which can be covered under 1 policy. But when it come to EXCLUDING SITES am only limited 100 sites as per MS documentation. How do I exclude 10k sites with a policy? my options are: Do I need to created multiple policies? Is there other methods that I am not aware. Thank you👍How to apply automatically a sensitivity label from clipboard?
Hello. I have rolled out Microsoft 365 Copilot to a early adopter group and I have activated sensitivity labels with Microsoft purview. Users report that If they summarize a document with Microsoft Copilot that is labeled as confidential and copy that text into an email, the label confidential does not apply to the email - label stays general. I am concerned of a data loss risk. what do I need to configure in Microsoft purview to prevent this behavior? It seems like an auto-labeling policy does not resolve this issue.
