Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

Issues with Endpoint DLP Functionality on macOS Device in Microsoft Purview

Copper Contributor

Hello,

 

I recently onboarded a macOS device into Microsoft Purview, but I'm encountering issues with the Endpoint Data Loss Prevention (DLP) functionality not working as expected. Here are the details:

 

  1. Device Concerned: macOS Ventura 13.4.
  2. Objective: I aim to apply Endpoint DLP policies to:
    • Block the upload of files containing sensitive information to non-trusted sites.
    • Prevent the upload of .csv files to non-trusted sites.
  3. Current Issue: After creating the policies and syncing the device, I found that the Endpoint DLP is not functioning on the macOS device – uploads are not being blocked as they should be.
  4. Steps Taken: I followed the onboarding steps through Intune as per the instructions on Microsoft's documentation page. The Purview management portal shows normal status for both onboarding and policy synchronization.
  5. Comparison: For context, these DLP policies work correctly on a Windows 11 device.

 

I'm seeking assistance or insights into why these DLP policies are not effective on my macOS device. Any suggestions or guidance would be greatly appreciated.

 

Thank you!

2 Replies

@t-yamada9999 Did you ever get this working? Looking at the Activity Explorer I see the "File copied to cloud" but no matter what I do to add a restricted app or domain, MDE still doesn't block it. Have you got a restricted app or domain working correctly in MacOS?

Have you tested your policy in all of the 4 supported browsers for MacOS:

Microsoft Edge (latest version)
Safari (latest version, macOS only)
Chrome (latest version)
Firefox (latest version)

it's possible that the DLP agent in one of your browsers for macOS is not working properly. Testing it with the other browsers will help you figure out if it's a browser issue or an onboarding issue.