Azure Information Protection - UL - Sensitivity Labels in Office Web Apps - No Adhering to Controls

Copper Contributor

I have Unified Labelling turned on, Labelling for Sharepoint and OneDrive configured / enabled and a document that has been protected so the the end user can only VIEW the content.


In Office Desktop the controls are correctly stopping the end user from screen capturing, and copying the content of the labelled document *tick*


In Office for the Web the controls are not stopping the end user from screen capturing or copying the content from the document. *cross*


What are my options? Or is there something that I have mis-configured, as this seems to be a significant hole in the Information Protection capabilities of the solution. 

2 Replies
if the problem is not isolated to Edge and also happens in other browsers,
you can try Azure community:

@Shane_Blake The limitation regarding screen capturing is well-known and accepted since there's no method for a web application to ask a browser to block screen capturing. 

The limitation you mention about copying is more puzzling since the Office web apps do prevent copying content from protected documents that don't grant this right. Is this something you can reproduce on documents protected by other users? What rights do you have on the document?


It must be highlighted that the ability to enforce limited rights on a document is a "best effort" approach, and it is not intended to stop malicious users (since if you give any form of access to a malicious user, there's nothing you can do to prevent them from reproducing the content, worst case they can take a picture of it with their phone or retype it by hand). So if you don't trust a user enough that you can't reasonably assume the user is not malicious, don't grant them rights to the content at all. 

Learn more about this here: