Jun 02 2020
- last edited on
May 24 2021
We have a DLP policy in our environment to disallow our users from sending SSN numbers, HIPAA info, drivers license numbers, etc outside of our environment. If something is picked up and flagged is there any way to override and allow it through as an Admin or are we pretty much stuck letting the users report it as a false positive and letting it through on their end?
I've looked through the reports, and security and compliance area and haven't found anything but wanted to check and see if anyone here knew of alternatives.
Jun 03 2020 12:05 AMSolution
You can configure end-user override as part of the rule configuration, via the "Let people who see the tip override the policy and share the content." setting. If you want only admins to be able to override, you need to use a mail flow rule with "moderate" action, meaning you are limited to the "legacy" DLP experience and only Exchange Online content.
Jun 03 2020 08:44 AM