Forum Discussion

Prathista Ilango's avatar
Prathista Ilango
Icon for Microsoft rankMicrosoft
Jan 08, 2026

Hello Chris_P,

Here are the answers to your questions. Hope this helps!

  1. Does this solution use custom SITs in addition to built-in ones? It identifies any sensitive info types (custom and build-in). 
  2. What extra configuration is required to scan ALL sharepoint sites for sensitive info using the Data Risk Assessments?
    Default assessment runs for top used sites in the organization. To scan specific sites, create custom assessment. Refer to: How to use DSPM for AI Data Risk Assessment to Address Internal Oversharing | Microsoft Community Hub
  3. What added value does the Item Level scan provide?
    Item level scan identifies items as potentially overshared if they have a sharing link for external or anonymous users, and also shows any applied sensitivity label and the owner of each item. Along with that, the following remediation actions can be taken on the identified potentially overshared items:
    • Resolve
    • Apply sensitivity label 
    • Notify 
    • Remove sharing link 
    While default assessment identifies and provides a summary of potential oversharing risks for the top used sites. 

    Refer to:

    Learn how Microsoft Purview Data Security Posture Management for AI provides data security and compliance protections for Copilots and other generative AI apps - (classic) | Microsoft Learn

    How to use DSPM for AI Data Risk Assessment to Address Internal Oversharing | Microsoft Community Hub
  4. Is any extra configuration besides the enterprise app creation required for Item Level scanning on all sites. 
    Item level scanning can be done for a maximum of 10 sites. Item-scanning scans potentially overshared items in the sites. Refer to the article mentioned above. The prerequisites are mentioned here: https://learn.microsoft.com/en-us/purview/dspm-for-ai-considerations#prerequisites-for-microsoft-365-item-level-scanning-for-data-risk-assessments

With respect to request access page issue, make sure the permissions are correctly configured in the Entra app, as per the prerequisites mentioned above, and the same is used while creating the item-level scan in custom assessment. 

Please mark as solution, if you find the answer helpful. This will assist others in the community who encounter a similar issue, enabling them to quickly find the solution and benefit from the guidance provided

Resources