Learn Microsoft 365 Data Loss prevention Policies in Just 20mins
Вставка
- Опубліковано 10 лип 2024
- In this episode we take a deep dive into the mysteries of Microsoft 365 Data Loss Prevention Policies, or DLP. It’s an absolute essential compliance tool designed to protect and prevent sensitive data from leaking outside of your organisation. In this session you’ll learn exactly how to create and apply policies. As always I welcome questions, comments and feedback.
Visit my site www.Andymalone.org - Наука та технологія
Great explanation Andy. Thanks a lot.
The best clear explanatory video for me so far.. Thanks Andy
Glad it was helpful!
Fantastic overview!
Another great video Andy!!
Thanks Patrick
Thank you for your clear video
I appreciate it when people share their theoretical knowledge. However, it's important to also have practical experience to back it up. Thank you for sharing. Great😎
I'm glad he shared his practical knowledge. These video types are the best and there aren't many out there once you move away from the basic use cases.
More great content Andy! Thank you.
You’re very welcome and thanks for the comment👍😄
Great work Andy as Usual !
Many thanks!
Nice! Thanks for putting this up!
you're very welcome and thanks for the comment :-)
Really love your content Andy, thanks for the informative and in-depth videos. Can I suggest a video idea? I'd really like a breakdown of Microsoft licensing types e.g. Microsoft 365 E1/E3/E5 and Office 365 E1/E3/E5 etc. I find it very difficult to know which one does what etc.
Aw thanks for the kind comment. I did a session on licensing previously. Did you see that? One of my friends has a great site, you should check out m365maps.com/ But, I will do a follow up video at some point, just for you ok :-) All the best, Andy
Thanks Well explained . you are the best on these topics .
Many thanks👍🤗
Great content Andy! Let's say you have a secret project, you protect and you create a custom SIT for the project name. Other than sentivity labels and auto-labelling using the custom SIT.
Using DLP and the custom SIT, how can you make sure that:
1. Only project members can chat, email and share files internally
2. No one can chat, email and share files with externals
Thanks Simon. Not sure if you’re asking a question or making a statement here. The latter I suspect 😊 Essentially an auto label policy is an extension of an information protection label using a data loss prevention policy.
@@AndyMaloneMVP ok forget about the other stuff then. Let's say you are Finance, and you want only finance to talk about finance related stuff internally (using some SIT of choice). How would you solve that with DLP?
@@simonagren9391 Sounds like you’re talking about a communication barrier. This would completely kill all communication between two internal groups. Check it out it’s in Microsoft purview (compliance centre)
@@AndyMaloneMVP yes but that would kill the collaboration entirely. If only one project has the need for total lockdown. Maybe a custom SIT and DLP based on that and exclusion using a distribution list for the project members would suffice.
Thnx u soo much brother❤
Thanks for the Video Sir :)
Most welcome!
Happy Easter to you and your family Sir, best wishes for everyone from Kolkata West Bengal India, keep making the best technical Contents
Aw thank you very much. Too you also and yes I'll do my best :-)
I am here for certification...great video ..tq Andy 😊😊
Well you’ve come to the right place. Many thanks and welcome 🤗👍
me too there is very little material for the new md 102 exam. I went on the MD 101 course, I read the entire Microsoft material but it's just not enough
Hey Andy, what if i simply apply the us financial data dlp to whole organization and finance dept face issue of data not being read at client side as they are out of organization. If the client informs us will the admin be able to mark that as safe and then people outside organization can read the info e.g The invoices that include credit card info and all that.
When using labels and policies you need to prepare and plan before you deploy. Create some policies for a few test users and see how it goes. Check out the learn documentation at learn.Microsoft.com
Impressed with how to use Microsoft on Mac
Under hipaa type dlp do you know what specific words are included in the icd9+10 ?
I’m not sure what you’re asking here?
Can we create a rule to count attachment ??
For example.
Email sent outside.
AND
Contains 2 or more attachment.
Then block .
Honestly, I don’t know I’ve not tried. That said you can create custom DLP policies. Also combine them with Microsoft power automate and create a flow. In terms of customisation is the link to Microsoft Docs that might help.docs.microsoft.com/en-us/exchange/security-and-compliance/data-loss-prevention/create-custom-dlp-policy
Thanks Andy. Let say you have a customer X and they want that their data should be prevented for any data loss using email and onedrive. How can you create custom rule for them? What information do you need from them? what rule set we should use for them? Any suggestion about this?
DLP Policies can be applied to Outlook, SharePoint, Onedrive, Teams chat etc, and Teams meetings (with a Teams Premium Licence). For full details visit learn.microsoft.com
@@AndyMaloneMVP Thanks Andy. I wish you have given some real world example :).
Hi, Andy Me Again Thank you so much for last time , Have A question How can map a SharePoint Drive into my Desktop pc? thanks Again
Not at all Max here is an article that will help support.microsoft.com/en-au/office/map-a-network-drive-to-a-sharepoint-library-751148de-f579-42f9-bc8c-fcd80ccf0f53
Hi, thanks for the video. I have a question about adding DLP policy exceptions. How do we add specific data like specific bank account no., specific tax file numbers as exceptions to the existing DLP policy?
Hi Ian, To modify, create your own data types, go to Microsoft Purview (Compliance) - Data Classification - Sensitive Information Types. Here is where you add your own. docs.microsoft.com/en-gb/microsoft-365/compliance/data-classification-overview?view=o365-worldwide
Thanks a lot, Andy. That worked great! This helped me a lot.
We created a new DLP policy, so it will apply to whole organization or if we can assign it to a specific Group / User. In this case in the video which DLP policy will implement first ?
Depend upon the order in the list
Hello Andy,
Please explain the prerequisites and required permissions for DLP
Most business plans include data loss, prevention policies. To deploy you need to be a member of either the compliance, security or global admin roles.
i need to create exclusion policy with 3 condition for sharepoint, onedrive, exchange, teams chat.
for example, user A can send sensitive information Z to recipient G.
i can't find the solution for this scenario. because i found the limitation on dlp exception, dlp exception only using 1 condition / "OR".
i need "AND" operator for this scenario.
can you help me ?
You could always try creating a custom policy. Or you could also configure dynamic group membership. I think either of these would possibly help you. In terms of personal support, I’m afraid I simply don’t have the time for that. I hope you can appreciate that but I wish you all the best.
@@AndyMaloneMVP okay thanks. i will check and try dynamic group membership .
@@agustinusmarcello47 you’re welcome
10-Q