Very useful video! I noticed something not being right at timestamp 18:24. The bottom comment in the dialogue window mentions ‘edit content (DOCEDIT)’ rights are required if you grant ‘Reply’, ‘Reply all’ or ‘Forward’ rights. Yet you are able to save your selection? When using expiry settings, will it expire for all users? I am looking at a configuration where staff needs to edit and once done, they need to submit for further processing. The staff initially editing should have an expiry, but the staff further processing should not have that limitation.
E3/E5 auto creates these labels for you however in Business Premium you need to create them manually either through the MS compliance portal or through PowerShell (imperative or declarative)
Hi guys, i m using e3 and so do most of our users, but i dont see information protection tab at all in ms purview. What license do i and our users need so that can use this sensitivity label?
Jonathan, Is Microsoft E5 licensing required to access the Groups & Sites checkbox at timestamp 8:53? That box is greyed out on my tenant. I can apply published labels to documents correctly.
I've never used sensitivity labels before but this is a very timely video because I right now have a need to prevent Guests from being added to a Private Channel and, according to a Microsoft article, applying a sensitivity label is their recommended approach. Very interesting (and useful!) video.
Great video Jonathan - I'm in the process of implementing this at my work. Couple of questions 1 - why apply a label if it doesn't encrypt it? i.e. why bother classifying a document as General when it doesn't do anything to it 2 - is there a way of applying labels to existing files (say within SharePoint) without opening each one, applying the label and resaving it? 3 - would you recommend auto-labelling? It worries me that it would mark something as confidential and encrypt it when it doesn't need to be. Thanks!
Hey Jonathan, Awesome work, I watched many of your videos and I really liked them all. I have two questions here for this particular topic and I hope you will find time to answer. 1. When you set the default sensitivity label what happens with the documents saved previously, before the label have been published? What kind of label they will have? 2. If you choose the require label, also what will happen with the documents previously created ( lets say saved in SharePoint library ). Would they get the default label assigned or they will have no label? Thanks!!
Jonathan, as always a very informative video. Any advice or suggestions for videos to guide users of Business Standard through the process of adding "Groups & Sites" to the scope of labels as there are some additional settings that are required to be completed.🙂
Hi Jonathan. First, thanks for the video, it was great. I have a question. I have disabled collaboration work with external users and guests in my tenant and Sharepoint Online, so do I need to enable sensitivity labels for Microsoft 365 and Sharepoint groups?
Hi Jonathan, The video was brilliant - all the info I need to be able to set up sensitivity labels. Thank you! I am confused about the licensing requirements for this feature. I am the domain admin for a small company with 12 employees. At the present time only I have an Office 365 Business Premium account (for access to Purview). Would all our consultants need a O365 Business Premium account instead of an O365 Business Standard to be able to use and apply labels? Any advice gratefully received!
Thank you very much for this video. How do files with sensitivity labels applied to them behave when membership to the label is based on dynamic group? I have create a label and distributed it to a dynamic group. I have later tagged a word document with this label. At a later stage I also amended the dynamic group to include more users, however the new employees in the group never get access to the previous old word document. How does this work? I have waited a couple of days, still the behaviour is that new employees within the group still do not have access to old documents.
Question - If an email is set to general and sent without an attachment to a user that is not a guest, will they be required to create a guest account (or use a one time password) to open that email. I was going to set the General label as the default for emails, but we deal with so many external people that we would not want them to have to authenticate to read all our emails.
@@bearded365guy yeah just researched and you need to run AIP on a server with SQL. I assume this syncs with Azure for a live connection to local resources. Shame you cant do this on a standard machine with SQL Express.
Thank you for this video. I am currently blocked by the message "Rights Management is not active for the tenant" when enabling controll access. I have looked at multiple documents and dont see a clear article explaining where to enabling Rights Management from. Are you able to please give some advice to this questions. Thank you!
Just had this issue too. Make sure you do the following run the below from PowerShell (Administrator) and not PowerShell ISE (not all steps may be required, but they are here for completeness). Install-Module -Name AIPService Update-Module -Name AIPService Import-Module AIPService Connect-AipService Enter GA credentials for the MS tenant Get-AipService If the result is 'disabled' then this is why you are getting the error message Enable-AipService
Hello Jonathan, I am your big fan. Please bear with me, why do we need to apply the label on nothing sensitive emails or files. What is the difference between without applying a label and applying a label on nothing sensitive?
Hi Jonathan, firstly thank you for this as well as all your other uploads. By far may favourite channel. Can I get away with Business Premium licensing to use Sensitivity Labels?
Hi guys, i m using e3 and so do most of our users, but i dont see information protection tab at all in ms purview. What license do i and our users need so that can use this sensitivity label?
The video, "TOP 5 Microsoft 365 Sensitivity Labels for Data Protection," hosted by Jonathan Edwards (also known as the Beard365 guy), discusses the underutilized yet essential feature within Microsoft 365 called sensitivity labels, which enhance data protection. Sensitivity labels allow businesses to classify and protect their data by applying labels to documents, emails, and SharePoint sites. These labels help in encrypting documents, restricting access, and even setting expiry dates for sensitive information. Jonathan demonstrates the creation and application of five crucial sensitivity labels in Microsoft 365: 1. Public: For information that can be publicly accessible, like brochures or blogs. 2. General: For internal data that can be shared within the organization or with trusted external partners. 3. Confidential External: For sensitive data meant for specific individuals inside or outside the organization, with access restrictions and possibly a watermark for extra security. 4. Confidential Internal: For highly sensitive information that should not leave the organization, allowing more stringent access controls. 5. Confidential View Only: For confidential information that recipients should only view, not print, forward, or edit. He emphasizes the common mistakes businesses make, such as creating too many labels or confusing naming conventions, which can overwhelm users. The video concludes by showcasing how these labels are applied in practical scenarios within Microsoft 365, illustrating their effectiveness in real-world applications to safeguard business data.
Jonathan, for real, your a legend, the way you explain things is just out of this world.
Appreciate it a lot!!
Thanks!
Very useful video! I noticed something not being right at timestamp 18:24. The bottom comment in the dialogue window mentions ‘edit content (DOCEDIT)’ rights are required if you grant ‘Reply’, ‘Reply all’ or ‘Forward’ rights. Yet you are able to save your selection?
When using expiry settings, will it expire for all users? I am looking at a configuration where staff needs to edit and once done, they need to submit for further processing. The staff initially editing should have an expiry, but the staff further processing should not have that limitation.
Simple. Easy to follow. Very informative.
E3/E5 auto creates these labels for you however in Business Premium you need to create them manually either through the MS compliance portal or through PowerShell (imperative or declarative)
Im using e3 and e5 and I dont see them I had to create them from scratch? Not sure it could be that my tenant is very old..
can you tell me which Licence I need on top of business premium to use labels inside Sharepoint?
Hi guys, i m using e3 and so do most of our users, but i dont see information protection tab at all in ms purview.
What license do i and our users need so that can use this sensitivity label?
Jonathan, Is Microsoft E5 licensing required to access the Groups & Sites checkbox at timestamp 8:53? That box is greyed out on my tenant. I can apply published labels to documents correctly.
Man you are amazing no fuss and direct hands on with clear explenation! amazing!
I've never used sensitivity labels before but this is a very timely video because I right now have a need to prevent Guests from being added to a Private Channel and, according to a Microsoft article, applying a sensitivity label is their recommended approach. Very interesting (and useful!) video.
Thanks. Labels are great for any business.
mind sharing the article ? Makes sense though because you can throw a label on groups and sites.
@@AbdullahOllivierreIT Can't send links, google 'Prevent guests from being added to a specific Microsoft 365 group or Microsoft Teams team'
Can't send links, google 'Prevent guests from being added to a specific Microsoft 365 group or Microsoft Teams team'
Great video Jonathan - I'm in the process of implementing this at my work. Couple of questions
1 - why apply a label if it doesn't encrypt it? i.e. why bother classifying a document as General when it doesn't do anything to it
2 - is there a way of applying labels to existing files (say within SharePoint) without opening each one, applying the label and resaving it?
3 - would you recommend auto-labelling? It worries me that it would mark something as confidential and encrypt it when it doesn't need to be.
Thanks!
Hey Jonathan,
Awesome work, I watched many of your videos and I really liked them all.
I have two questions here for this particular topic and I hope you will find time to answer.
1. When you set the default sensitivity label what happens with the documents saved previously, before the label have been published? What kind of label they will have?
2. If you choose the require label, also what will happen with the documents previously created ( lets say saved in SharePoint library ). Would they get the default label assigned or they will have no label?
Thanks!!
Thank you so much, made my day !!
Jonathan, as always a very informative video.
Any advice or suggestions for videos to guide users of Business Standard through the process of adding "Groups & Sites" to the scope of labels as there are some additional settings that are required to be completed.🙂
Hi Jonathan.
First, thanks for the video, it was great. I have a question. I have disabled collaboration work with external users and guests in my tenant and Sharepoint Online, so do I need to enable sensitivity labels for Microsoft 365 and Sharepoint groups?
Such an amazing and informative video, thanks a lot Jon..🥰😃
Hi Jonathan, The video was brilliant - all the info I need to be able to set up sensitivity labels. Thank you! I am confused about the licensing requirements for this feature. I am the domain admin for a small company with 12 employees. At the present time only I have an Office 365 Business Premium account (for access to Purview). Would all our consultants need a O365 Business Premium account instead of an O365 Business Standard to be able to use and apply labels? Any advice gratefully received!
Hi, yes Microsoft licensing requirements say that everyone needs a business premium license if they’re going to take advantage of Sensitivity Labels.
great video thank you sir
Thank you for that! Very interesting. What License is needed to use the Labels? Is it included in M365 E3 Plan? thx
Business Premium is ok.
Amazing, thank you!
Entre escuchar el ingles británico y aprender el entorno de Microsoft, todo esta bien!!!!!!!!!!!!!!!!!!
Thnx for making this so easy to understand. :)
Thank you very much for this video. How do files with sensitivity labels applied to them behave when membership to the label is based on dynamic group? I have create a label and distributed it to a dynamic group. I have later tagged a word document with this label. At a later stage I also amended the dynamic group to include more users, however the new employees in the group never get access to the previous old word document. How does this work? I have waited a couple of days, still the behaviour is that new employees within the group still do not have access to old documents.
Question - If an email is set to general and sent without an attachment to a user that is not a guest, will they be required to create a guest account (or use a one time password) to open that email. I was going to set the General label as the default for emails, but we deal with so many external people that we would not want them to have to authenticate to read all our emails.
Can you extend labels to other data sources like on a nas or only within 365?
No, not NAS. Mainly 365.
@@bearded365guy yeah just researched and you need to run AIP on a server with SQL. I assume this syncs with Azure for a live connection to local resources. Shame you cant do this on a standard machine with SQL Express.
Thank you for this video.
I am currently blocked by the message "Rights Management is not active for the tenant" when enabling controll access. I have looked at multiple documents and dont see a clear article explaining where to enabling Rights Management from.
Are you able to please give some advice to this questions.
Thank you!
Just had this issue too.
Make sure you do the following
run the below from PowerShell (Administrator) and not PowerShell ISE (not all steps may be required, but they are here for completeness).
Install-Module -Name AIPService
Update-Module -Name AIPService
Import-Module AIPService
Connect-AipService
Enter GA credentials for the MS tenant
Get-AipService
If the result is 'disabled' then this is why you are getting the error message
Enable-AipService
a very nice video. love it.
Hello Jonathan,
I am your big fan.
Please bear with me, why do we need to apply the label on nothing sensitive emails or files. What is the difference between without applying a label and applying a label on nothing sensitive?
Labels are a new thing. Getting your users to apply to label is good practice for them to start thinking about classifying data.
Thanks very much for the video, very informative. You mentioned label priority but then didn't come back to it, unless I missed it?
Hi Jonathan, firstly thank you for this as well as all your other uploads. By far may favourite channel. Can I get away with Business Premium licensing to use Sensitivity Labels?
Yes, you absolutely can!
Thank you for sharing it.
Thanks
Hi guys, i m using e3 and so do most of our users, but i dont see information protection tab at all in ms purview.
What license do i and our users need so that can use this sensitivity label?
eye awakening indeed.
The video, "TOP 5 Microsoft 365 Sensitivity Labels for Data Protection," hosted by Jonathan Edwards (also known as the Beard365 guy), discusses the underutilized yet essential feature within Microsoft 365 called sensitivity labels, which enhance data protection. Sensitivity labels allow businesses to classify and protect their data by applying labels to documents, emails, and SharePoint sites. These labels help in encrypting documents, restricting access, and even setting expiry dates for sensitive information.
Jonathan demonstrates the creation and application of five crucial sensitivity labels in Microsoft 365:
1. Public: For information that can be publicly accessible, like brochures or blogs.
2. General: For internal data that can be shared within the organization or with trusted external partners.
3. Confidential External: For sensitive data meant for specific individuals inside or outside the organization, with access restrictions and possibly a watermark for extra security.
4. Confidential Internal: For highly sensitive information that should not leave the organization, allowing more stringent access controls.
5. Confidential View Only: For confidential information that recipients should only view, not print, forward, or edit.
He emphasizes the common mistakes businesses make, such as creating too many labels or confusing naming conventions, which can overwhelm users. The video concludes by showcasing how these labels are applied in practical scenarios within Microsoft 365, illustrating their effectiveness in real-world applications to safeguard business data.
How we increase the office 365 Admin centre Storage
Tell me more?