Unable to open rpmsg
Hello, We have AIP and in the last couple of weeks there are lot of complaints about people not able to send/open protected e-mails. E-mails either marked for "Recipients Only" or any AIP unified label that is set for "protection". I am sure this was all working until this last Outlook update.Searching documents with "Sensitivity" Label-ID
Well we have made the field "InformationProtectionLabelId" as Managed Property. So as a App or a User if you want a list of files having a specific label you can simply search using the label's GUID. Like below: Use like below in SharePoint search box InformationProtectionLabelId: 2702e115-d7fc-4912-b15b-a9b7662b1476 To use search API do below: https://<your domain>/_api/search/query?Querytext=%27InformationProtectionLabelId=<guid of the label> That's how you use the search API to search for ALL contents with a specific label
Azure Information Protection - How to identify and reassign ownership to files when staff leave?
Hi there - just implementing Azure information protection for the first time and I'm trying to find out the best way to deal with the scenario where a users leaves a company and the business/IT administrator wants to be able to find all the files that user had protected using AIP labels and that the ex employee was the sole owner of and then wishes to reassign the ownership of those files (either automatically or manually) to another user in the company. I know the super user can be created who can take ownership of an AIP protected file however the problem is (i) how do you identify all the files a particular person was the sole owner of across both an on premise file server (where scanner has been deployed) and SharePoint? (ii) how do then use the output from (i) and reassign ownership to all the relevant files. Thanks GerryAzure Information Protection - How to identify and reassign ownership to files when staff leave?
Hi there - just implementing Azure information protection for the first time and I'm trying to find out the best way to deal with the scenario where a users leaves a company and the business/IT administrator wants to be able to find all the files that user had protected using AIP labels and that the ex employee was the sole owner of and then wishes to reassign the ownership of those files (either automatically or manually) to another user in the company. I know the super user can be created who can take ownership of an AIP protected file however the problem is (i) how do you identify all the files a particular person was the sole owner of across both an on premise file server (where scanner has been deployed) and SharePoint? (ii) how do then use the output from (i) and reassign ownership to all the relevant files. Thanks Gerry
information protection label, label policies, auto-labeling - what is the difference?
plz help me understand the functionality of the partitions, because when creating a label, I have the opportunity to choose auto-assignment. At the same time there is a separate section for auto-labeling where, as far as I understand, are there more advanced settings, but do I need to remove the auto-assignment of the label when creating a label? At the same time, Label Policies uses the same label with individual policies. How do they interact? Why did you divide similar functionality into different sections?))AIP - Am I missing something with "Recipient Only" label used with "View only" AIP permissions?
Am I missing something here or how do you handle this? I am implementing AIP for the first time. I have a "Specific Recipients" sub label under "Highly Confidential" that allows the user to define custom permissions for users. From my testing it looks like a user cannot assign an external user “view only” permissions on a document (via their PC) as when they share a link to that file with that user via SharePoint/OneDrive – the user won’t be able to read it in Office on the web as it won’t support this type of “specific permission” defined method for this external user and the external user can’t download it either and read it locally as they only have view only permissions which restricts download. Resulting in the user not being able to access or read the file. How do you give an external user "view only" permissions via a label that is set to allow "custom permission" (in a way that results in them being able to view the file either via office on the web or locally through their desktop office application)?
Default Sensitivity (Information Protection) Labels in a SharePoint Online Document Library
I am currently in the process of implementing information protection in a new SharePoint Online architecture that I am building to replace our one classic site (to rule them all), but I am experiencing an issue when trying to assign a default sensitivity label to an existing or new document library. When accessing the basic library settings for any existing document library, I get two grey boxes that look like they are loading in, but never load where the default sensitivity label settings should be. When creating a new document library, I can see the default sensitivity label setting, but there are no labels available. For some context, I have created four sensitivity labels so far, and have created a test label policy that has assigned all four labels to my own account for testing. For licensing, I have the following: Office 365 E3 Enterprise Mobility + Security E5 Microsoft Defender for Office 365 (Plan 2) Microsoft 365 E5 Compliance This Licensing structure came out cheaper than M365 E5 and I was under the assumption that it had all of the functionality that my organisation requires at this point in time. I have raised this issue with Microsoft support on the April 25th and still have not yet had a proper consultation let alone a resolution, so I am hoping the community here would be a bit more responsive. Let me know if there is any more information that might be of help.
Change status to DND if user is "in a meeting"
I work in a company with highly confidential documents and materials. Therefore the protection of this IP is pretty important. Since IP can be exposed with the Teams pop-ups, these are pretty problematic in our situation. This is not an issue if you present something in virtual Teams meetings (because you automatically get the DND status if you share anything), but since there are a lot of meetings already happening again in physical form and there were a couple of incidents (people mirroring their screen on a TV/beamer, being "only" busy - in a meeting and they got some interesting messages as pop-ups in the middle of the meeting), which lead to the inquiry of the security manager to disable pop-ups from Teams alltogether. Since I cannot control the pop-ups itself, I would be able to set the status of the users right? And the least invasive method would be to use the calender status of the user to use it as an indicator if he's in a meeting or not. And if he's in a meeting I would be able to change the status to DND and not only busy, right? Any other ideas are highly appreciated. Thanks in advance.
AIP justification before changing label question
Hi, The Azure Information Protection Policy has an option for "Users to provide a justification before removing a label or replacing it with a one that has a lower-order number". However, is there a built-in workflow that can send this request to the data owner for approval? Or is there an add-on to achieve this objective? Or is it currently just not possible? Thank you, SK
