Forum Discussion

t-yamada9999's avatar
t-yamada9999
Copper Contributor
Dec 08, 2023

Issues with Endpoint DLP Functionality on macOS Device in Microsoft Purview

Hello,

 

I recently onboarded a macOS device into Microsoft Purview, but I'm encountering issues with the Endpoint Data Loss Prevention (DLP) functionality not working as expected. Here are the details:

 

  1. Device Concerned: macOS Ventura 13.4.
  2. Objective: I aim to apply Endpoint DLP policies to:
    • Block the upload of files containing sensitive information to non-trusted sites.
    • Prevent the upload of .csv files to non-trusted sites.
  3. Current Issue: After creating the policies and syncing the device, I found that the Endpoint DLP is not functioning on the macOS device – uploads are not being blocked as they should be.
  4. Steps Taken: I followed the onboarding steps through Intune as per the instructions on Microsoft's documentation page. The Purview management portal shows normal status for both onboarding and policy synchronization.
  5. Comparison: For context, these DLP policies work correctly on a Windows 11 device.

 

I'm seeking assistance or insights into why these DLP policies are not effective on my macOS device. Any suggestions or guidance would be greatly appreciated.

 

Thank you!

  • Sean_McMillan's avatar
    Sean_McMillan
    Copper Contributor

    t-yamada9999 Did you ever get this working? Looking at the Activity Explorer I see the "File copied to cloud" but no matter what I do to add a restricted app or domain, MDE still doesn't block it. Have you got a restricted app or domain working correctly in MacOS?

  • vicwingsing's avatar
    vicwingsing
    Brass Contributor
    Have you tested your policy in all of the 4 supported browsers for MacOS:

    Microsoft Edge (latest version)
    Safari (latest version, macOS only)
    Chrome (latest version)
    Firefox (latest version)

    it's possible that the DLP agent in one of your browsers for macOS is not working properly. Testing it with the other browsers will help you figure out if it's a browser issue or an onboarding issue.

Resources