Stopping Copilot Access to SharePoint Online Sites and Document Libraries

We recently asked Copilot if it was possible to block access to sites using sensitivity labels. The response we got included DLP as part of the solution. It looks like the solutions you presented are at the SPO setting level or the content label level. Does this response provide a third option?

+++++

To configure Copilot to exclude a site based on a sensitivity label, you’ll need to use Microsoft Information Protection (MIP) and set up the appropriate policies. Here’s a step-by-step guide to help you through the process:

1. Create Sensitivity Labels:
- Go to the Microsoft 365 compliance center.
- Navigate to Information protection under Solutions.
- Click on Labels and then Create a label.
- Define the label name, description, and settings (e.g., encryption, content marking).

2. Publish Sensitivity Labels:
- After creating the labels, go to Label policies.
- Click on Publish labels and select the labels you want to publish.
- Choose the users or groups to whom the labels should be available.

3. Configure Policies to Exclude Sites:
- In the compliance center, go to Information protection.
- Under Data loss prevention, create a new policy.
- Define the policy settings, including the conditions and actions.
- In the conditions, specify the sensitivity label that should trigger the exclusion.
- In the actions, configure the policy to block access to specific sites or content.

4. Apply the Policy:
- Ensure the policy is applied to the relevant users or groups.
- Test the policy to confirm that it correctly excludes access to the specified sites based on the sensitivity label.

By following these steps, you can effectively configure Copilot to exclude sites based on sensitivity labels.