Forum Discussion
Whitelisting domain in DLP policy
The article shows you how to configure conditions/exceptions, it doesn't list them all...
Have you looked into exceptions for DLP rules, more specifically the "recipient domain is" exception? https://docs.microsoft.com/en-us/office365/securitycompliance/data-loss-prevention-policies#tuning-rules-to-make-them-easier-or-harder-to-match
I didn't find any mention about recipient domain exception in the article? Only thing I could find about exceptions is Exchange Online Transport rules, but my problem is with Sharepoint content so when sharing from Sharepoint is there way to whitelist domain that you share documents from Sharepoint?
The article shows you how to configure conditions/exceptions, it doesn't list them all...
VasilMichev no you are incorrect there is no setting for this.
Shikhar RajMicrosoft
Please try creating a separate DLP Policy just for exchange Online and then you can have all the different exclusions you will need.
VasilMichev I'm curious to see if anyone has answered this successfully yet. Currently, you can't add a domain exception ("recipient domain is..." for SharePoint or OneDrive. It only works for exchange. We have a very similar business case where we need our parent company to be excluded from certain DLP policies that protect us from sharing "internal only" content with external users.
Adrienne Almeida, I am also interested if there is a solution/workaround for the domain exception across different products and not only Exchange.
