cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure Information Protection (AIP) Scanner_ Guidance for November 2023 and beyond

Luke_Michael_Fisher
Copper Contributor

‎Nov 07 2023 07:02 AM

‎Nov 07 2023 07:02 AM

Azure Information Protection (AIP) Scanner_ Guidance for November 2023 and beyond

Hello, 

 

We are currently in process of testing the AIP Scanner to point towards on premises Nasuni file shares. We can get the scanner to work against a test folder but we are still having some obstacles. We have an open ticket with MS Engineering to help troubleshoot further (hopefully this week even).

 

The main questions I have at this moment are:

 

  • Is it STILL advisable to have the scanner hooked up to a Log Analytics workspace in Azure to have it display results?
  • If not, will the scanner results show up in Compliance Portal?
    • If they do show up in Content Explorer, currently that shows only OneDrive, Outlook, SharePoint, and Teams. Our on-premises files shares would need to be differentiated somehow for searching and reporting purposes through the GUI.

I know this is a lot but looking forward to hopefully getting some further guidance. 

 

Thanks and God Bless!

Luke Fisher

 

P.S. This was a helpful walkthrough from 2 years ago.... E04 - AIP Scanner - Microsoft Purview Customer Experience Engineering (CxE)

107 Views
0 Likes
2 Replies
Reply
2 Replies
miller34mike

‎Nov 07 2023 08:14 AM

‎Nov 07 2023 08:14 AM

Re: Azure Information Protection (AIP) Scanner_ Guidance for November 2023 and beyond

@Luke_Michael_Fisher 

 

Hi Luke! Thank you for posting your question here.

 

First, I hope your ticket is resolved soon, feel free to add some of those obstacles here as well, if you'd like.

 

Second, if you configured the Azure Analytics connection in the past, I do not believe there is a need to remove it but do note that the Azure side has been completely retired. Most recommendations would be to leverage activity explorer, which will show the movement/label changes/DLP policy matches/violations against the repo's you've targeted with the scanner, as well as using the auto-generated csv file, located at the below location, for a custom, org-specific power bi configuration.

%localappdata%\Microsoft\MSIP\Scanner\Reports

 

miller34mike_0-1699373626461.png

 

 

1 Like
Reply
Luke_Michael_Fisher

‎Nov 08 2023 12:03 PM

‎Nov 08 2023 12:03 PM

Re: Azure Information Protection (AIP) Scanner_ Guidance for November 2023 and beyond

Thanks Mike-- so once configured to point towards on our on premises file shares, Activity Explorer can be used to drill down to the correct Target Path? And on top of that we can leverage some custom-built Power BI reports out of the CSV files?

I think we will go that route instead of a Log Analytics workspace.
0 Likes
Reply