Microsoft 365 DLP (Data Loss Prevention Policies) How they work & Why YOU need them NOW!

Поделиться
HTML-код
  • Опубликовано: 10 дек 2024

Комментарии • 76

  • @vinaybhatia4228
    @vinaybhatia4228 2 года назад

    I am addicted to your videos Sir.

  • @jerenius
    @jerenius 2 года назад +1

    Andy might be the most pleasant RUclipsr there is. And good content also.. highly recommended for cert prep..

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Aw what a lovely thing to say I really appreciate that. And I’m delighted to have you on board. All the best, Andy.👍😊

  • @ale.9479
    @ale.9479 Год назад

    Thank you so much for all your videos. Great explanations. Also, I really enjoyed the one you did for Microsoft 365 Endpoint which really helped me during my interview.

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад

      Hey, that’s awesome, thanks so much for the feedback 👍

  • @iteepk
    @iteepk 2 года назад

    How can I verify the DLP or Label Data encryptions?
    Thank you for video.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      learn.microsoft.com/en-us/microsoft-365/compliance/view-the-dlp-reports?view=o365-worldwide

  • @sohaibasimkhan
    @sohaibasimkhan 2 года назад

    You are the best.
    My all best wishes for you.liked and subscribed your channel.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Thank you so much 😀 it's much appreciated

  • @aqibmunshi8362
    @aqibmunshi8362 2 года назад +1

    Why do we need DLP if we have Labels? I am unable to understand the exact use case here because it looks Labels have the capability of Labelling as well as protecting.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      Labelling is something that is user controlled. Whereas DLP is rule based and can be applied either automatically or manually.

  • @pujanpatra9958
    @pujanpatra9958 3 месяца назад

    Is there any settings needs to be enable to link up with Microsoft Intune and Microsoft Purview Compliance for Endpoint DLP ?

    • @AndyMaloneMVP
      @AndyMaloneMVP  3 месяца назад

      Yes, there is an agent that you can install. Look in the settings page in Microsoft Per Vue and you’ll see the agent for data loss prevention.

  • @Rahgozar633
    @Rahgozar633 2 года назад

    Hi Andy. Great Video. Thanks a lot.

  • @nirmanafernando90
    @nirmanafernando90 Год назад

    Hi Andy, Thank you very much for this video explanation, However I want to ask you about the DLP policy override,
    I have restrict the actions to send an email externally. But allow user override the policy.
    In this scenario, if the user override the policy, will the email delivered to the external recipient or will it get blocked ?
    Really appreciate your support here.
    Thank you

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад +1

      With the override option you’re basically authorising your user to send the message. So yes, the recipient would receive the message. But, the sender would need to input a reason, which would then be audited. I hope this makes sense 👍

    • @nirmanafernando90
      @nirmanafernando90 Год назад

      @@AndyMaloneMVP Thank you very much Andi

  • @JustSaying290
    @JustSaying290 Год назад

    Hi Andy. Does DLP extend to protecting local files in the computer? Like what happens if a file is stored locally then transferred to a usb drive? And should I choose DLP or Azure information protection?

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад

      Windows server has a service called the file, classification service or FCS. This combines with RMS or rights management services. There is a connector that you can install locally which allows you to copy files across from on premises into SharePoint. The files meta data will include any DLP policies and adjust them accordingly in the cloud. Check out docs.microsoft.com for more details. Thanks again.

    • @JustSaying290
      @JustSaying290 Год назад

      @@AndyMaloneMVP thanks Andy. As always 🙂

  • @nicholashughes8214
    @nicholashughes8214 2 года назад

    I would be very interested to see a video that looks under the hood of the DLP for example how does it work for example where are the matching tables for the data saved how does the matching engines work , where in the file structure is the Data Label added etc Are there any best practice recommendations for setting up the EDM and then applying them in a Small or Medium size firm etc

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      This is the definitive source of info. docs.microsoft.com/en-us/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-worldwide

  • @falexanderbc
    @falexanderbc 2 года назад

    Excelent video!!! thanks for share your knowledge. :)

  • @adamcrawford1346
    @adamcrawford1346 2 года назад

    Thanks Andy. I did enjoy this one. Are you aware of any way. To apply these programmatically?

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Thanks so much. You know I’m not a developer. However, you may want to look at the graph API or even the security graph API. There is also a tool called the graph API explorer which you may find useful.

  • @jonathanwitherspoon32
    @jonathanwitherspoon32 2 года назад

    Thanks for the video. I’m sure it will help me with this MS Cert I am working on getting.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      That’s awesome to hear and the very best of luck 👍😊

  • @gdr1174
    @gdr1174 2 года назад

    I'm currently trying to implement a couple of sensitivity labels with client side auto-labelling enabled. I published the policy to a few users on Wednesday and so far the auto-label feature has only trickled out to the Excel desktop clients and the word web client when tested. I know these things aren't instant in 365 but 5 days and counting is really testing my patience.. Once done I eventually hope to hook the labels into DLP policies as a fallback to prevent data leaking out in the event of users mislabelling

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      That is unusual. It could either be a licensing issue, but if not it sounds like a technical problem. I would submit a support ticket. Thanks again for the comment and great to have you on board

    • @gdr1174
      @gdr1174 2 года назад

      I've spent an hour on the phone with Microsoft checking the configuration, which is all fine. The label just stubbornly refuses to work in Word/Outlook/PowerPoint. They have run a resync on the tenant I'm told so I'll need to sit tight and await the outcome. I'll update this thread if we ever get to a resolution in case anyone else happens to come across this situation in future.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@gdr1174 please do I’d be interested to know you’re resolution.

  • @avageekado
    @avageekado 2 года назад

    Absolutely brilliant, you explain really well for a newbie like me. I would appreciate if you create a playlist on videos to go through in sequence for data protection and governance (MIP/DLP/MDM/MAM). How does right management works on M365, is it ON by default?

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Hey thanks for the nice comments I really appreciate it. I have created a bunch of playlists, and I hope that the content is in a reasonable order. However, as an instructor I’m sure you will appreciate that I cannot put everything in sequential order. I would never work again! And I’m not ready to retire yet LOL

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Ah but if I did that I'd never get any work ;-D Also in class most courses do not teach these in any particular order

  • @TN_HondaDad
    @TN_HondaDad 2 года назад

    Great video and thank you. When I go to test a sensitive info type by opening it up and click TEST and upload a file which contains the words aba routing and a legit routing number, the test states "no sensitive content was found" ? I can't seem to trigger a simple info type? Have you run thru this test and/or would have an idea why a simple file with "aba routing" and a routing number in the file I am loading will not trigger? I would like to see it work in action to better understand. Thank you

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      I understand your frustration, however you should know actually can take up to 72 hours in order for this to work. If you have no luck after let’s say, a couple of days I would put in a support ticket and I’m sure somebody can help you. Thanks so much for visiting the channel and I really appreciate it.

  • @timshinkle2782
    @timshinkle2782 Год назад

    I tried policy tips in email but they don't appear to work for attachments that contain PII prior to the email being sent like they do for PII detected in the body of the email. Is that your experience? Thx

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад

      Check your users are licensed and also it can take up to 24 hours to propagate

  • @frankschoenmaker9638
    @frankschoenmaker9638 2 года назад

    Hello Andy, when i don't have the option Data loss prevention in mij compliance menu, what am i missing? I have a Microsoft 365 Business Standard license at this moment.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      This feature is not supplied in standard, however you do get limited features in business premium. The full feature is only available with E5 plus EM&S

  • @fabianquintero5695
    @fabianquintero5695 2 года назад

    Hello sir. Awesome content. I am new to DLP and maybe get a job working in the area. What would you recommend I can get my hands on to get some hands-on experience and practice? Thanks a lot for your time.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      Creat a free E5 trial subscription with O365 and practice. You don’t need a credit card and will get 30 days of free practice 😀🎉

  • @michaelpyne8318
    @michaelpyne8318 2 года назад

    Hi Andy, as others have stated some great content on there. I haven't seen much content on implementing DLP and Classification on Azure Files and was wondering if this is something you may be looking into since the release of Purview. Thanks MP

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      To be honest Michael DLP in Microsoft 365 is very similar to DLP in Microsoft azure. The technology is the same. I covered this topic in a number of other videos, you may want to check them out on my site. But yes, the next time I feel that an update is due I will certainly take your comments on board. Many thanks, and I’m delighted to have you on board.

  • @ctxshekhar7979
    @ctxshekhar7979 10 месяцев назад

    you should have created how it looks at the end user level

  • @TheNd02
    @TheNd02 2 года назад

    It's help me lot thanks buddy

  • @azuredude
    @azuredude 2 года назад

    Great content!! thank you!

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      You are very welcome thanks very much

  • @seregadnipro
    @seregadnipro 2 года назад +1

    Very interesting video. Thanks for the support of Ukraine.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      You’re welcome, and my pleasure

    • @seregadnipro
      @seregadnipro 2 года назад

      @@AndyMaloneMVP Now I'm setting up DLP for my organization. your video helped a lot thanks

  • @jstump1972
    @jstump1972 2 года назад

    I would love to hear what dlp policies healthcare IT admins are using.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      There are policies for healthcare customers. Have you seen them?

    • @jstump1972
      @jstump1972 2 года назад

      @@AndyMaloneMVP yessir but curious what other custom ones healthcare folks may have setup too.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@jstump1972 Not sure I’m afraid, it’s not really my area, I’m not a healthcare professional.

    • @jstump1972
      @jstump1972 2 года назад

      @@AndyMaloneMVP I understand sir, which is why I asked what other healthcare admins are doing in that space lol

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@jstump1972 fair enough 😀

  • @royalrein5314
    @royalrein5314 2 года назад

    I highly recommend your channel and already subscribe. I have one scenario based query. In my current organization if any user saves document in pdf from print , an alert is triggered. Is there any process to bypass this.. Please help me out resolving this query.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад +1

      Hi thanks for the question. There must be a setting somewhere that’s triggering this. At the moment I can’t think for the life of me where it would be. Have you checked out docs.microsoft.com? This is where you find the definitive information that you need. I will try and investigate this further for you and if I find anything, I’ll report back. Thanks again

    • @royalrein5314
      @royalrein5314 2 года назад

      Thanks Andy for prompt response. Unfortunately I don't find any such option. It would be great help if you kindly come up with solutions

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@royalrein5314 I'l try but I'd reach out to Microsoft support as I do not provide product support on my channel. I hope you understand, I'm just crazy busy. Sorry.

  • @govind7394
    @govind7394 Год назад

    Hello Sir, I want to know as a support engineer, how can I troubleshoot dlp related issues

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад

      Take Microsoft course SC-400 to learn all you need to know

    • @govind7394
      @govind7394 Год назад

      @@AndyMaloneMVP ok..how much it costs and how to get it

    • @AndyMaloneMVP
      @AndyMaloneMVP  Год назад

      @@govind7394 search you’ll have to study materials which you can find learn.microsoft.com. You can also book the exam here as well. Good luck and all the best

  • @ahirnimesh09
    @ahirnimesh09 2 года назад

    informative content 😊

  • @bhaskarsharma9450
    @bhaskarsharma9450 2 года назад

    Custom dlp policy tip does not work with outlook client with any version and built.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      It works with 2016 and 2019 versions. Other versions require that you download a Client. Check out Microsoft Docs for more details

    • @bhaskarsharma9450
      @bhaskarsharma9450 2 года назад

      @@AndyMaloneMVP HI Andy, Thank you for your reply. I am talking about click to run outlook on which it does not work. Please share MS article where it says "Other version require that you download a Client"

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@bhaskarsharma9450 My apologies, I don’t have time to search the web for every question I receive. That said if you search in docs.microsoft.com I’m sure your answer will be there. Ensure that you specify to run software. It’s also important to know that if you are deploying this as an Azure active directory client it can be managed in InTune and you would need an appropriate license. As I’ve said on my channel I cannot provide product support for every product, I hope you understand thanks again and all the best

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      @@bhaskarsharma9450 this is a good start. If you have continued problems I'd submit a support ticket. I'm sorry I cannot provide technical support. docs.microsoft.com/en-us/office365/troubleshoot/data-loss-prevention/data-loss-prevention-policy-tips#:~:text=In%20Outlook%2C%20select%20File%20%3E%20Options,tip%20notification%20option%20is%20selected. www.c-sharpcorner.com/blogs/office-365-dlp-not-working-office-365-data-loss-prevention-measures

  • @oluwajuwonvictoriafamakin5387
    @oluwajuwonvictoriafamakin5387 2 года назад

    Is there a way to prevent external senders from getting notified when they send sensitive information, I mean outside of the organization.

    • @AndyMaloneMVP
      @AndyMaloneMVP  2 года назад

      Probably, there is probably a rule. I’m not familiar with every single rule though. 👍