Forum Discussion

Copper Contributor

Jan 18, 2024

DLP policy is not syncing with endpoints for more than 5 days

We are in the process of deploying endpoint DLP policies to devices onboarded to Purview. However the policy status remains not updated for more than 5 days. Is there any way to force update the poli...

microsoft purview

BillClarksonAntill

Iron Contributor

Jan 23, 2024

Hey saravanan82

If you're leveraging endpoint dlp and have onboarded devices to Microsoft Purview, you will be able to tell a specific device to sync with purview to receive it's assigned policies, but only if the device is reporting as being out of sync. To do this, you can:

login to http://compliance.microsoft.com/
Select "Settings" from the menu on the left
Select "Device onboarding"
Find and select any out of sync device

if that doesn't work, try forcing a sync from in security.microsoft.com

Select "Devices"
Find the Device in your device inventory
Click on the 3 dots and select policy sync

This will be dependent on if you are using the MDE attach method with your device fleet or not

saravanan82
Copper Contributor
Jan 23, 2024
Hi BillClarksonAntill,

The policy sync option is greyed out in the defender portal. The last DLP policy sync occurred on Jan 13th, post that we have made many changes to endpoint DLP policies and none of them enforced to devices.
- BillClarksonAntill
  Iron Contributor
  Jan 24, 2024
  Hey saravanan82
  
  Have you turned on Device Monitoring by chance
  
  Check out this link https://learn.microsoft.com/en-us/purview/endpoint-dlp-learn-about#whats-different-in-endpoint-dlp:~:text=Enabling%20Device%20management
  - saravanan82
    Copper Contributor
    Jan 24, 2024
    Hi BillClarksonAntill
    
    Yes. Device Monitoring is enabled