02-15-2018 11:08 AM
02-15-2018 11:08 AM
Is it possible for those who have on Premise SharePoint and Exchange and are looking at going to the Microsoft cloud to apply DLP to both? We do not want the Business and Security to have multiple tools for DLP with multiple interfaces.
Also I see nothing about Office 365 DLP that indicates it can Audit SQL Server for Sensitive data.
02-19-2018 02:39 AMSolution
In a single word - No. The DLP controls Office 365 offers are way ahead of the on-premises ones, so even if there was a single policy that spans cloud and on-premises resources, it would be limited in some features.
And no on the SQL question, none of the Microsoft offerings covers DLP for that scenario.
02-20-2018 08:15 AM - edited 02-20-2018 08:16 AM
Thanks for the quick reply. So are you saying the online Office 365 is very different from the Office 365 on premise?
Also, what connects to SharePoint and Exchange to do the audit and protection? Is that Office 365 client or is that something else? I am trying to understand all the components for DLP from Microsoft that would need upgrading on site to support your DLP capabilities.
02-20-2018 09:51 AM
There is no such thing as "Office 365 on-premises". Are you perhaps referring to the desktop Office applications?
02-21-2018 03:02 AM - edited 02-21-2018 07:22 AM
DLP policies are matched by examining the cloud search index. So if you can get something into the search index then potentially it can be examined for DLP. To get on premise SharePoint content into the cloud search index you need to set up cloudSSA hybrid search which can be done relatively easily if you're SP2013 or SP2016 on premise (not Exchange on premise). eDiscovery and content search in Security & Compliance centre definitely picks up this on prem content so don't see why DLP policies would not too. This would then give you one portal at least for all the SharePoint content. See attached image for a conceptual view of he crawl process.