Help! Sensitivity label applied to whole tenant mistakenly with Watermark
We create a sensitivity label to have a watermark to be applied on the files on where it assigned but accidentally or due to misconfiguration, the watermark applied to whole tenant and the files, need a solution to automatically removed these watermarks from the files wherever it is applied. Please assist, TIA... .
Microsoft Azure Information Protection Uninstall Issue
We installed AIP installer to ~3000 machines and we deployed v2.13.49.0 to all of our machines last year and didn't upgrade it. We have since had a request in to remove it from all machines, this is fine but we found when testing some were failing the uninstall. Did a bit of digging to the failures and saw we had multiple newer versions installed 2.14.90.0, 2.16.73.0, 2.16.79.0, 2.17.66.0 Did a bit more digging and saw that Windows Update has been updating some but not all. I tried to download the newer versions so I could package then send the uninstall but not all are there to download. I then went down the GUID to uninstall them which works "SORT OF" but not fully, it uninstalls the app but it is still lingering in the Add/Remove Programs window and is still showing as installed. If I click uninstall in there it goes through the uninstall process and its then gone. Problem is I do not and cannot get the other version installers as they are no longer available and wondered if anyone has hit this issue yet and if there is some sort or rip out app/script? because this is not good.
What happens when a Policy Tip in Microsoft Data Loss Prevention is reported?
I'm creating documentation to explain the functions of policy tips, and I cannot find documentation for what happens when a Policy Tip is reported in Microsoft's Data Loss Prevention features. I've clicked on "Report" but nothing happens on my side. My only guesses are that 1. The reports go to the administrator that created the policy for evaluation and remediation, or 2. The report is sent to Microsoft for analysis like in MS Defender for 365.
New Blog | Microsoft Information Protection SDK 1.14: Now Available!
We're pleased to announce that the Microsoft Information Protection SDK version 1.14 is now generally available via NuGet and Download Center. In this release of the Microsoft Information Protection SDK, we added support for CBC encryption of Office files by default, upgraded to Open SSL 3.0, added support for masking PII in log files, and more. Read the full release here: Microsoft Information Protection SDK 1.14: Now Available! - Microsoft Community HubMIP Sdk labelling an excel file with UserRights
Hello, I tried to label in our tenant an excel file adding users and specific rights with class UserRights corresponding to the higly confidental and specific people, in the sample of https://github.com/Azure-Samples/MipSDK-File-Dotnet-ServicePrincipalAuth . But it doesn't work. All members of the higly confidental can see it. That should work? Can it be a configuration issue of our tenant, AIP?
AIP and CSV files?
Hi, How does AIP handle CSV files? Looking at this article, https://docs.microsoft.com/en-us/azure/information-protection/rms-client/clientv2-admin-guide-file-types, it says CSV file are supported for inspection...so what does that mean in relation to Classification and Labeling? Also, the article doesn't mention that ".CSV" files get renamed to ".PFile" after AIP Protection (which it does as I have just tested it). So if I right-click a CSV file, select "Classify and Protect", I get this option: What is meant by "Generic Encryption"? Why can we not see the usual Permissions in the 'Select Permission' drop-down? So its confusing, but do CSV files get protected or not via AIP? Thanks
Apply Sensitivity Labels using Graph APIs
While using Beta Graph API for Sensitivity Label - (https://graph.microsoft.com/beta/drives/myDriveID/items/myItemID/microsoft.graph.assignSensitivityLabel), I get the below error. I am using Delegated App Permission. { "error": { "code": "notSupported", "message": "AssignSensitivityLabel API is not yet available", "innerError": { "date": "2022-09-29T16:30:30", "request-id": "edd756cc-12f2-4781-ba07-004d601f42a0", "client-request-id": "edd756cc-12f2-4781-ba07-004d601f42a0" } https://graph.microsoft.com/beta/drives/DriveID/items/ItemID/microsoft.graph.extractSensitivityLabel - This works very well using the same token and other permission levels. Please help. VasilMichevUndo Button is greyed in WORD after applying a sensitive label
Hi All, I noticed that the UNDO button on my WORD documents are GREYED out when I apply a sensitivity label. The issue happens only to WORD, no issues with EXCEL or PPT files. Those who don't have the MIP feature not enabled yet, don't have any issues with the UNDO button. The issue happens to any word document (Old or new). It does not matter if the document is Auto Saved or manually saved. My Office version is Microsoft® Word for Microsoft 365 MSO (Version 2204 Build 16.0.15128.20278) 64-bitHow to predict AIP log size (and cost)?
Hi, We've had a look at a few Microsoft sites and resources, but are unable to predict what our new AIP deployment may cost, Data Ingestion specific. Where do we find a calculator to give us some sort of an indication on data ingestion? We know the E5 license prices, but how do we determine the Log Analytics data ingestion (and hence pricing)? Here are some of our criteria: 4 million files on-premises 4 million files across a few hundred SharePoint Sites all documents and emails will be auto-labeled as "General" all documents with sensitive PCI data will be labelled as "Confidential" we have about 600 users How do we predict the volume of log analytics data generated by AIP from the above information? What else do we need to know about to predict these numbers? Thank you, SK PS. The information online is unfortunately insufficient (especially this last sentence): https://docs.microsoft.com/en-us/azure/information-protection/reports-aip as a starting point, you might find the following estimates useful: - For audit data generated by Azure Information Protection clients only: 2 GB per 10,000 active users per month. - For audit data generated by Azure Information Protection clients, and scanners: 20 GB per 10,000 active users per month. If you use mandatory labeling or you've configured a default label for most users, your rates are likely to be significantly higher.
