Connect with experts and redefine what’s possible at work – join us at the Microsoft 365 Community Conference May 6-8. Learn more >

Forum Discussion

Brass Contributor

Apr 25, 2023

DLP policy using File Type as condition to block copy to removable usb device

Hello all, Kindly advice what are the exact steps to create the policy to block/audit users while copying and pasting data removable device using file type as condition. Currently I have created ...

Copper Contributor

Apr 26, 2023

I also want to know this. Writing a command so I can get up to date on this topic / discussion. I go to https://compliance.microsoft.com/datalossprevention/policies but I don't see the option to create a policy for it. I only see the option to create exclusion for specific USB sticks.

Afsar_Shariff
Brass Contributor
Apr 26, 2023
marvnl15 once you select the condition you may need to select the action as "Audit or Restrict activities on devices" to see "Copy to USB removable device" option.
- marvnl15
  Copper Contributor
  Apr 26, 2023
  Afsar_Shariffthanks, but the thing is, I don't see what you mean on where it is you want me to check.
  To break it down. This is what I see:
  Policies - Microsoft Purview
  
  When I click on Policies I see these selections and they point to the Location templates like 'General Data Protection Regulation (GDPR) Enhanced' and 'U.S. Patriot Act Enhanced' and so many more
  
  Also, if I want to use the search bar, unfortunately, it does not show anything.
  
  And here you can edit or make exclusions, but not create the policy to restrict download resources or copy to USB:
  
  And if I click on 'get started' maybe to see if I get it more, but then I get this info as seem unrelated:
  
  I just don't get it. Sorry. Maybe it is a license thing? We have tons of Microsoft E3 and E5 licenses in our tenant. or do we need more?

Share

Resources