Government AMA | Microsoft Community Hub

Connect with experts and redefine what’s possible at work – join us at the Microsoft 365 Community Conference May 6-8. Learn more >

Forum Widgets

Latest Discussions

That's a wrap: Microsoft CMMC AMA
Thank you for joining us and voicing your questions and feedback during this fun and action-packed hour. *Please note that you won't be able to ask new questions in this space until our next live event. We will be disabling posting and further comments in this AMA space but encourage you to post any new questions or follow up in our Public Sector, Local/State Government Space. We will put together a summary document of what was covered during and share it in this group as well as a follow up blog post. See you next time!
Sarah_Gilbert
Community Manager
Aug 25, 2020
compliance
Government
2.4KViews
4likes
1Comment
Azure Gov AIP Unified label client support for MacOS
Hello, I'm currently setting up AIP for our tenant and it doesn't appear that the Unifield Labling client for MacOS is available. Does that mean Office Apps for Mac can't label their documents until this is available? Would they have to use the web versions? Thanks, Mike
Solved
BerlinerVice
Copper Contributor
Aug 25, 2020
2KViews
0likes
1Comment
Bitlocker Encryption Compliance
Could you detail the settings that are required for Bitlocker full-disk encryption to be compliant with CMMC (FIPS-validated encryption)? I've seen a "FIPS-mode" setting, but heard there was more than one step to being compliant. What Operating Systems is this available on? Win7, Win10, Server 2008, Server 2012, Server 2016? Thanks!
Solved
Anon414
Copper Contributor
Aug 25, 2020
4.4KViews
0likes
2Comments
Securely Transferring Data from Company O365/M365 to Customers/Partners
What options are available to securely transfer data/documents from company-managed Office 365 (commercial, GCC, or GCC High) environments and customer/partner ones? I realize the data could always stay in one environment to avoid this problem, but what Microsoft options exist to 'deliver' CUI to customers securely?
Solved
MichaelKing
Brass Contributor
Aug 25, 2020
4KViews
0likes
3Comments
ITAR Compliance
If an organization is using ITAR data with Microsoft solutions, is GCC high required for the storage or processing of this data?
Anon414
Copper Contributor
Aug 25, 2020
3.3KViews
0likes
3Comments
Protection of CUI in OneDrive
Is there a secure and compliant way to store and process data in OneDrive (FIPS validated cryptography, configuration settings, etc)? Does this require a GCC or GCC high license for this function? Are there specific settings that are required?
Anon414
Copper Contributor
Aug 25, 2020
3.4KViews
0likes
2Comments
Protection of CUI in SharePoint
Is there a secure and compliant way to store and process data in SharePoint (FIPS validated cryptography, access controls, etc)? Does this require a GCC or GCC high license for this function?
Solved
Anon414
Copper Contributor
Aug 25, 2020
8.6KViews
0likes
2Comments
Re: Welcome to the Microsoft CMMC AMA!
Sarah_Gilbert Hi there, I was wondering if MS believes customers that require CMMC level 3 would be able to leverage M365 services such as EMS to become compliant or if moving to GCC high is a must?
Solved
GOsorio
Copper Contributor
Aug 25, 2020
1.1KViews
1like
1Comment
CMMC - does it require MFA at network login?
"NIST 800-171 3.5.3 Use multifactor authentication for local and network access to privileged accounts and for network access to non-privileged accounts" Some debate inside my company about whether MFA is required at network login vs MFA being required only when accessing CUI systems (not all systems on our network have CUI). So, can we place MFA at entry to CUI system and not MFA all employees at time of network login? And does CMMC require anything different that NIST 800-171 3.5.2?
Solved
bkaufman
Copper Contributor
Aug 25, 2020
6.2KViews
1like
4Comments
What are the recommendation and procedures for flagging data as CUI and managing it?
In preparing for our CMMC Certification, as a company that is heavily uses SharePoint and Teams in the Office365 cloud environment -- what are the recommendations and procedures for flagging data as CUI and managing it?
Kalonji_ICS
Copper Contributor
Aug 25, 2020
admin
Auditing
compliance
governance
office 365
1.9KViews
1like
1Comment

Resources

Tags

Government12 Topics
office 3655 Topics
compliance4 Topics
Permissions2 Topics
sharepoint2 Topics
security2 Topics
onedrive1 Topic
exchange1 Topic
meetings1 Topic
governance1 Topic

Share