SOLVED

DLP policy can apply for E1 license ?

Iron Contributor

Hello

    i have some question about DLP policy 

    1. Policy DLP can apply with user E1 license ?

    2. Policy DLP can apply for user from local send email to cloud (hybrid exchange) and from cloud to local

    3. Policy DLP can apply for user from local relay to office365 EOP and send outsite to gmail ?

Best Regards,

Thanks 

7 Replies
best response confirmed by Tien Ngo Thanh (Iron Contributor)
Solution

Hi @Tien Ngo Thanh,

1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here

https://docs.microsoft.com/en-us/office365/servicedescriptions/office-365-platform-service-descripti...

2.) Yes, however there is the caveat that DLP does cover mail sent between on premise users. See article

https://docs.microsoft.com/en-us/exchange/security-and-compliance/data-loss-prevention/data-loss-pre...

3.) Yes, confirmed in this Technet article

https://social.technet.microsoft.com/Forums/en-US/60f94c58-3795-41bd-a813-0b5237584a50/is-it-possibl...

Hope that answers your questions

Best, Chris

    1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here

    -> If So instead-of create DLP policy then I can create Rule email to it apply for all user ? and also will apply E1

 

Hi @Tien Ngo Thanh,

 

The DLP policy will be applied org-wide in the security and compliance centre, however, as the service description states it shouldn't apply explicitly to the users with the E1 licences when doing DLP checks. It would be very interesting to discover if it did, because that would actually contradict the service agreement.

 

DLP365.PNG

 

Best, Chris

So although i has create rule mail with sensitive infomation then if user assign E1 then this rule will not scan ?

Capture.PNG

    I just create DLP policy (not rule) and test  with E1 license seem it work with policy .so then it can apply E1 and E3

 

Hi @Tien Ngo Thanh,

If you have tested it, and it works with a user with E1 and experiencing exactly what you get with E3 then I guess it works and it resolves your issue! However, just a caveat that if, for some reason, you have an issue then Microsoft may not support it if it deviates from the service terms.

Best, Chris

Yes, sounds like a license violation to me :)

1 best response

Accepted Solutions
best response confirmed by Tien Ngo Thanh (Iron Contributor)
Solution

Hi @Tien Ngo Thanh,

1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here

https://docs.microsoft.com/en-us/office365/servicedescriptions/office-365-platform-service-descripti...

2.) Yes, however there is the caveat that DLP does cover mail sent between on premise users. See article

https://docs.microsoft.com/en-us/exchange/security-and-compliance/data-loss-prevention/data-loss-pre...

3.) Yes, confirmed in this Technet article

https://social.technet.microsoft.com/Forums/en-US/60f94c58-3795-41bd-a813-0b5237584a50/is-it-possibl...

Hope that answers your questions

Best, Chris

View solution in original post