cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Limiting the upload of classified files to sensitive SharePoint Online sites - MCAS file policy

John Hodges
Copper Contributor

‎Aug 08 2019 11:38 AM

‎Aug 08 2019 11:38 AM

Limiting the upload of classified files to sensitive SharePoint Online sites - MCAS file policy

I'm working with a client who has rolled out AIP labels and is looking to block where users can post these files internally. Example: if I have a "sensitive" file (based on its label), can I prevent it from being uploaded to a SharePoint site with a specific label? (using site classification labels or property bag values) https://docs.microsoft.com/en-us/sharepoint/dev/solution-guidance/modern-experience-site-classificat...

 

I've been able to configure the MCAS file policy to find the sensitive files based on their label and prevent their upload, but this either becomes a blanket policy across ALL SharePoint / OneDrive sites, or only specific folders that I have to manually select. Is there a faster way to assign this to sites based on their classification? 

Labels:
5,506 Views
1 Like
3 Replies
Reply
3 Replies
Dima Donhin

‎Aug 13 2019 07:33 AM

‎Aug 13 2019 07:33 AM

Re: Limiting the upload of classified files to sensitive SharePoint Online sites - MCAS file policy

Hi John,
Currently MCAS doesnt support reading site specific labels.
You need to configure the policy by selecting the sites according to your needs.

Regards,
Dima
0 Likes
Reply
Wolfgang Bach

‎Aug 14 2019 11:59 PM

‎Aug 14 2019 11:59 PM

Re: Limiting the upload of classified files to sensitive SharePoint Online sites - MCAS file policy

@John Hodges I have the same requirement from a customer. I only managed to get this work for browser basedd access. All files with a specific label (Highly Confidential) can be blocked for up/download but only withi browser session because it is a session policy (enforced by conditional access). But it also notofies that  this wont work for desktop apps:

clipboard_image_0.png

But in "Access policies" i cannot filter based on file labels. Are there any plans to support this?

0 Likes
Reply
cloud_entropy

‎Aug 19 2019 12:11 AM - edited ‎Aug 19 2019 12:12 AM

‎Aug 19 2019 12:11 AM - edited ‎Aug 19 2019 12:12 AM

Re: Limiting the upload of classified files to sensitive SharePoint Online sites - MCAS file policy

Same here - We are also looking into this use case. Any valuable input appreciated :)

0 Likes
Reply