Forum Discussion
Solved
Whitelisting domain in DLP policy
Does anyone know, if there is any way to whitelist a domain in DLP policy? The problem is that we are sharing documents from SPO site to a trusted partner domain and don't want to get the DLP warnin...
The article shows you how to configure conditions/exceptions, it doesn't list them all...
The article shows you how to configure conditions/exceptions, it doesn't list them all...
VasilMichev no you are incorrect there is no setting for this.
Shikhar RajMicrosoft
Please try creating a separate DLP Policy just for exchange Online and then you can have all the different exclusions you will need.
- Are there new updates on this topic ? In large companies, the option to manage whitelists by exceptions can lead to management nightmares. Large companies work with hundreds or thousands of external partners. Ideal situation would be to be able to automate feeding of whitelisted domains with external consolidated list and just have a role in the organization completing a mapping between some sensitive info type and the associated vendors. Management of such thing in each rule /policy individually is not a sustainable model in large organsiations.
- we too concluded that the administrativve overhead, plus the high amount of whitelisted domain to dept exclusions would lead to failure (a DLP policy has a size limit)
so we end up without a solution for now and let everything out and a 1FTE monitoring everything that gets out.... not ideal
