Nov 08 2022 04:22 AM
I am looking for a way to use sensitivity labels to selectively allow or block download in Teams / SPO. I.E. container label A enforces limited, web only access, container label B allows full access. We are an AAD P1 / EMS E3 shop, so authentication context and MDCA are not options. I need this to be user-driven, so PowerShell scripts are not options.
There are a number of links out there that reference using the CA section in container labels (example below), however none that I have found specifically detail what we are looking to accomplish. Each link references the need to set the unmanaged device access control in SPO to limited, web only, which creates two CA policies that always override any label I attempt to create.
Any thoughts or info on how I could make this work would be greatly appreciated.
Sensitivity Labels on Containers - United States (insentragroup.com)
Nov 10 2022 04:59 AM