Firstline (F1) Security & Compliance

%3CLINGO-SUB%20id%3D%22lingo-sub-195302%22%20slang%3D%22en-US%22%3EFirstline%20(F1)%20Security%20%26amp%3B%20Compliance%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-195302%22%20slang%3D%22en-US%22%3E%3CP%3ECan%20somebody%20point%20me%20to%20an%20article%20or%20resource%20that%20walks%20through%20what%20is%2Fis%20not%20covered%20for%20firstline%20(F1)%20workers%20through%20the%20Security%20%26amp%3B%20Compliance%20Center.%26nbsp%3B%20I%20was%20reviewing%20the%20service%20descriptions%20and%20had%20some%20confusion%20around%20a%20few%20things%20-%20in%20particular%2C%20it%20says%20%22No%22%20for%20Data%20Loss%20Prevention.%26nbsp%3B%20Does%20that%20mean%20that%20F1%20user%20content%20(OneDrive%20for%20Business%2C%20Exchange%2C%20etc.)%20is%20NOT%20going%20to%20be%20triggered%20in%20DLP%20policies%3F%26nbsp%3B%20Or%20just%20that%20the%20F1%20users%20cannot%20create%20DLP%20policies%20in%20the%20S%26amp%3BC%20center%3F%26nbsp%3B%20Similar%20question%20for%20litigation%20holds%20and%20retention%2Fdeletion%20policies.%26nbsp%3B%20Below%20is%20a%20link%20to%20the%20service%20description%20page%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Flibrary%2Fdn933793.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Flibrary%2Fdn933793.aspx%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-195862%22%20slang%3D%22en-US%22%3ERe%3A%20Firstline%20(F1)%20Security%20%26amp%3B%20Compliance%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-195862%22%20slang%3D%22en-US%22%3E%3CP%3EThe%20official%20statement%20is%20that%20DLP%20requires%20E3%20or%20equivalent%20license.%20Then%20again%2C%20Microsoft%20is%20often%20not%20enforcing%20licensing%20requirements%20in%20the%20code...%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-195594%22%20slang%3D%22en-US%22%3ERe%3A%20Firstline%20(F1)%20Security%20%26amp%3B%20Compliance%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-195594%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20for%20the%20response%2C%20Vasil.%26nbsp%3B%20My%20main%20question%20is%20%22Will%20content%20in%20a%20F1%20user's%20OneDrive%20be%20flagged%20if%20it%20matches%20a%20DLP%20policy%3F%22%26nbsp%3B%20Or%20%22Can%20you%20protect%20sensitive%20data%20(through%20DLP%20policies)%20that%20is%20created%20and%2For%20shared%20by%26nbsp%3Ban%20F1%20user%3F%22.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-195516%22%20slang%3D%22en-US%22%3ERe%3A%20Firstline%20(F1)%20Security%20%26amp%3B%20Compliance%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-195516%22%20slang%3D%22en-US%22%3E%3CP%3ECreation%2Fadministration%20of%20these%20features%20does%20not%20require%20any%20specific%20license%2C%20even%20unlicensed%20accounts%20can%20do%20so%20(provided%20they%20have%20the%20necessary%20permissions).%20What's%20detailed%20in%20the%20service%20description%20documents%20is%20the%20%22applicability%22%20of%20the%20feature.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Contributor

Can somebody point me to an article or resource that walks through what is/is not covered for firstline (F1) workers through the Security & Compliance Center.  I was reviewing the service descriptions and had some confusion around a few things - in particular, it says "No" for Data Loss Prevention.  Does that mean that F1 user content (OneDrive for Business, Exchange, etc.) is NOT going to be triggered in DLP policies?  Or just that the F1 users cannot create DLP policies in the S&C center?  Similar question for litigation holds and retention/deletion policies.  Below is a link to the service description page:

 

https://technet.microsoft.com/en-us/library/dn933793.aspx

3 Replies

Creation/administration of these features does not require any specific license, even unlicensed accounts can do so (provided they have the necessary permissions). What's detailed in the service description documents is the "applicability" of the feature.

Thanks for the response, Vasil.  My main question is "Will content in a F1 user's OneDrive be flagged if it matches a DLP policy?"  Or "Can you protect sensitive data (through DLP policies) that is created and/or shared by an F1 user?".

The official statement is that DLP requires E3 or equivalent license. Then again, Microsoft is often not enforcing licensing requirements in the code...