Suggested/Recommended Endpoint DLP File Path Exclusions?

%3CLINGO-SUB%20id%3D%22lingo-sub-2840416%22%20slang%3D%22en-US%22%3ESuggested%2FRecommended%20Endpoint%20DLP%20File%20Path%20Exclusions%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2840416%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fcompliance%2Fendpoint-dlp-using%3Fview%3Do365-worldwide%23file-path-exclusions%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EUsing%20Endpoint%20data%20loss%20prevention%20-%20Microsoft%20365%20Compliance%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3EIt%20says%3A%3C%2FP%3E%3CP%3E%22%3CSPAN%3EYou%20may%20want%20to%20exclude%20certain%20paths%20from%20DLP%20monitoring%2C%20DLP%20alerting%2C%20and%20DLP%20policy%20enforcement%20on%20your%20devices%20because%20they%20are%20too%20noisy%20or%20don%E2%80%99t%20contain%20files%20you%20are%20interested%20in.%20Files%20in%20those%20locations%20will%20not%20be%20audited%20and%20any%20files%20that%20are%20created%20or%20modified%20in%20those%20locations%20will%20not%20be%20subject%20to%20DLP%20policy%20enforcement.%20You%20can%20configure%20path%20exclusions%20in%20DLP%20settings.%22%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EAre%20there%20particular%20paths%20that%20are%20suggested%20for%20exclusion%20for%20DLP%20scanning%20similarly%20to%20recommendations%20for%20excluding%20certain%20directories%20from%20A%2FV%20scanning%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EWhat%20are%20common%20paths%20that%20are%20%22too%20noisy%22%20and%20likely%20to%20not%20contain%20files%20you%20are%20interested%20in%20as%20mentioned%20above%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EFor%20example%2C%20to%20prevent%20performance%20problems%20or%20other%20issues%2C%20should%20temp%20folders%2C%20C%3A%5CProgram%20Files%2C%20C%3A%5CWindows%2C%20%25appdata%25%20etc.%20be%20included%20or%20excluded%20from%20DLP%20scanning%3F%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2840416%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECompliance%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Contributor

Using Endpoint data loss prevention - Microsoft 365 Compliance | Microsoft Docs

It says:

"You may want to exclude certain paths from DLP monitoring, DLP alerting, and DLP policy enforcement on your devices because they are too noisy or don’t contain files you are interested in. Files in those locations will not be audited and any files that are created or modified in those locations will not be subject to DLP policy enforcement. You can configure path exclusions in DLP settings."

 

Are there particular paths that are suggested for exclusion for DLP scanning similarly to recommendations for excluding certain directories from A/V scanning?

What are common paths that are "too noisy" and likely to not contain files you are interested in as mentioned above?

For example, to prevent performance problems or other issues, should temp folders, C:\Program Files, C:\Windows, %appdata% etc. be included or excluded from DLP scanning?

0 Replies