When I follow the principles of a scoped deployment for MDCA to allow only a specific user group to be monitored. I have to set up an API for the particular service, like O365. Periodically, MDCA will scan the file storage repository for sensitivity labels and or malicious files. Will this scan perform only to the storage areas of the users assigned via the user group, or will ALL files be scanned no matter if they belong to the usergroup?
