Forum Discussion
Use case for Endpoint DLP restricted apps blocking uploads to ZOOM from user desktops
We are trying to solve for this Use case: Using Endpoint DLP restricted apps group and DLP policies for blocking uploads of files to ZOOM Desktop meetings from user desktops ("My Computer")
Has anyone seen this done effectively or have specific documentation on configuration in Azure Purview to work this magic?
Any ideas would help.
We have added Zoom.exe to the restricted apps group and played with the DLP policy settings for a small test group. So far, files can still be uploaded from ZOOM meetings so we must be missing a step.
Thanks all!
-Luke F.
Thanks!
5 Replies
- Heather_Poulsen
Community Manager
Luke_Michael_Fisher We surfaced your question during today's episode of Unpacking Endpoint Management. Please see the panel's answer at around 19:40.
Heather_PoulsenThanks for the featured question! Very cool
Following the steps provided, we still notice that although it gets a "flag" in DLP as "File accessed by unallowed app", it still looks like we are just in "audit" enforcement mode (see screenshot below). "How applied" is also set to None.
Would any of these settings below need to be changed from "Audit" to "Block" in order to activate this Endpoint DLP policy?
Once again, our specific use case is:
To block file uploads from a user's desktop through the ZOOM chat (in the ZOOM desktop app).
Thank you once again and in advance for more guidance.
Best,
Luke Fisher
- Leo_Ramirez
Microsoft
Hello Luke! Are the files that you are trying to block being uploaded to the restricted application protected? For example, what are the conditions of your EDLP rule?
To answer your question, "YES" you would need to set the action type to "BLOCK" in order to prevent the files from being uploaded to the restricted application. Also, please ensure that you have configured the "Restricted app activities":
