Feb 13 2019 03:30 AM - edited Feb 13 2019 03:58 AM
Hello
i have some question about DLP policy
1. Policy DLP can apply with user E1 license ?
2. Policy DLP can apply for user from local send email to cloud (hybrid exchange) and from cloud to local
3. Policy DLP can apply for user from local relay to office365 EOP and send outsite to gmail ?
Best Regards,
Thanks
Feb 13 2019 03:47 AM - edited Feb 13 2019 03:48 AM
SolutionHi @Tien Ngo Thanh,
1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here
https://docs.microsoft.com/en-us/office365/servicedescriptions/office-365-platform-service-descripti...
2.) Yes, however there is the caveat that DLP does cover mail sent between on premise users. See article
https://docs.microsoft.com/en-us/exchange/security-and-compliance/data-loss-prevention/data-loss-pre...
3.) Yes, confirmed in this Technet article
https://social.technet.microsoft.com/Forums/en-US/60f94c58-3795-41bd-a813-0b5237584a50/is-it-possibl...
Hope that answers your questions
Best, Chris
Feb 13 2019 04:00 AM
1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here
-> If So instead-of create DLP policy then I can create Rule email to it apply for all user ? and also will apply E1
Feb 13 2019 04:06 AM
Hi @Tien Ngo Thanh,
The DLP policy will be applied org-wide in the security and compliance centre, however, as the service description states it shouldn't apply explicitly to the users with the E1 licences when doing DLP checks. It would be very interesting to discover if it did, because that would actually contradict the service agreement.
Best, Chris
Feb 13 2019 06:39 AM
So although i has create rule mail with sensitive infomation then if user assign E1 then this rule will not scan ?
Feb 14 2019 05:40 AM - edited Feb 14 2019 05:42 AM
I just create DLP policy (not rule) and test with E1 license seem it work with policy .so then it can apply E1 and E3
Feb 14 2019 05:45 AM
Feb 14 2019 05:48 AM
Yes, sounds like a license violation to me :)
Feb 13 2019 03:47 AM - edited Feb 13 2019 03:48 AM
SolutionHi @Tien Ngo Thanh,
1.) DLP cannot be applied to E1 licences. DLP needs a plan with Exchange Online Plan 2. See Office 365 service description here
https://docs.microsoft.com/en-us/office365/servicedescriptions/office-365-platform-service-descripti...
2.) Yes, however there is the caveat that DLP does cover mail sent between on premise users. See article
https://docs.microsoft.com/en-us/exchange/security-and-compliance/data-loss-prevention/data-loss-pre...
3.) Yes, confirmed in this Technet article
https://social.technet.microsoft.com/Forums/en-US/60f94c58-3795-41bd-a813-0b5237584a50/is-it-possibl...
Hope that answers your questions
Best, Chris