Forum Discussion
RJKumar
Aug 25, 2023Copper Contributor
DLP protection content scanning
I am facing an issue with my DLP. The policy was created in may 2022. I works fine on all the documents created on or after May 2022, but it doesn't scan any document which is created before the policy. Someone suggested me to enable Just-in-time protection, but I think it is more of a device based setting.
I am confused, on how to fix this issue.
- folucian
Microsoft
Hello, the policy processes all the files that were created after the policy creation. JIT should sort the issue out, or if you open an older document and edit and save it, then the reevaluation cycle starts again.
Just-in-time protection applies a candidate policy to onboarded Windows 10/11 devices. The candidate policy blocks all egress activities on monitored files until policy evaluation completes successfully. The candidate policy is applied to:
Items that have never been evaluated.
Items on which the evaluation has gone stale. These are previously evaluated items that haven't been reevaluated by the current, updated cloud versions of the policies.
https://learn.microsoft.com/en-us/purview/endpoint-dlp-learn-about#just-in-time-protection-preview