DLP Administrative Units

Copper Contributor



I'm running a project with Microsoft DLP. Need to assign a permission to users that can see some of DLP alerts and activity explorer, but only the part that i want to. Such as, domain name is a.com. When i read about administrative units it sounds like doing this but i tryed to creat one, there is no role that includes DLP or Compliance. 


Is there any way to do it ?

For example, finance admin can only see finance users alerts and activity explorer.


Thank you.

1 Reply
While there is limited support for administrative units in the Compliance center, DLP and the activity explorer are both supported, so you should be fine. You will have to create custom AU-scoped role groups though. Follow the instructions here: https://learn.microsoft.com/en-us/purview/microsoft-365-compliance-center-permissions#administrative...