Category: AIP

Please review the blog post: Apply sensitivity labels to PDFs created with Office apps for additional details. Coming soon to public preview, Microsoft is introducing the ability to maintain label and protection for PDF files created from Microsoft Office apps.   When this will happen: Public preview: rollout will begin in late June and is expected to …

If you’ve configured users for a default sensitivity label policy for Office documents, the label you chose will automatically be applied to Word, Excel, and PowerPoint documents you create or modify. Previously, this only applied to new documents only. Note: This update applies to Word, Excel, and PowerPoint on the Web, and Word and PowerPoint on …

Microsoft will no longer be onboarding new Log Analytics workspaces to store Azure Information Protection (AIP) audit logs. Note: Customers who have previously configured Log Analytics to store AIP audit logs will continue to receive forwarded audit logs into their workspaces until the data pipeline is fully retired. When this will happen: Microsoft will stop …

The DLP on-premises scanner crawls on-premises data-at-rest in file shares and SharePoint document libraries and folders for sensitive items that, if leaked, would pose a risk to your organization or pose a risk of compliance policy violation   This gives you the visibility and control you need to ensure that sensitive items are used and protected properly, and to …

Document tracking provides information for administrators about when a protected document was accessed.   If necessary, both admins and users can revoke document access for protected tracked documents.  This feature is available for AIP UL client version 2.9.111.0 or later 

Microsoft announces the General Availability of the Microsoft Data Loss Prevention Alerts Dashboard. This latest addition in the Microsoft’s data loss prevention solution provides customers with the ability to holistically investigate DLP policy violations across:  Exchange  SharePoint Online  OneDrive  Teams  Devices  Cloud apps  On-premises file shares  Learn more about the feature at: Learn about the data loss prevention Alerts …

Configure sensitivity labels for content markings by using variables in the text string for your header, footer, or watermark Read more about the feature at Manage sensitivity labels in Office apps – Microsoft 365 Compliance | Microsoft Docs 

Azure Information Protection client audit logs are now available in Activity Explorer for existing AIP Analytics customers and this functionality is in public preview. Read more about Activity Explorer audit events at: https://docs.microsoft.com/en-us/microsoft-365/compliance/data-classification-activity-explorer?view=o365-worldwide   This preview requires registration via: https://aka.ms/Register-AIPActivityExplorerPublicPreview    

Co-authoring and AutoSave on Microsoft Information Protection-encrypted documents  Client-based automatic and recommended labeling on Mac  Mandatory labeling requiring users to apply a label to their email and documents  Availability of audit label activities in Activity Explorer  Native support for variables and per-app content marking  You can leverage co-authoring using:  Production or test tenant  Microsoft 365 apps with the …

Automatic classification with sensitivity labels emails in transit in Exchange Online  Improved capabilities on top of existing service-based auto-labeling include:  Additional predicates with Exchange Online auto-labeling   Encrypt only and Do Not Forward support Context-based detections Read more about the feature at: Automatically apply a sensitivity label to content in Microsoft 365 – Microsoft 365 Compliance | Microsoft Docs 

Office apps (Word, Excel, PowerPoint, Outlook) will now respect the Admin policy setting to require users to apply a label to documents and emails on Windows, Mac, iOS, and Android (for the Office 365 subscription version of the apps).  The Azure Information Protection unified labeling client supports this configuration that’s also known as mandatory labeling. For labeling built in to Office …

Microsoft has introduced additional support for MIP protected PDF’s in Microsoft Edge. This is currently in preview. What is the feature? If your organization has Microsoft Information Protection enabled, Microsoft Edge could open MIP protected PDF files which were protected in the same tenant seamlessly; across Windows and Mac. The support is now extended to …

AIP UL client 2.11.58 is now GA and available to download https://aka.ms/AIPClient What’s new ? This version includes the following new features, fixes, and enhancements for the unified labeling scanner and client: Scanner usage logging in the Windows event log Scanner diagnostics tool improvements Improved scanner details output Updates for the scanner’s supported information types …

Today, Microsoft announced that AIP UL client 2.11.57 is now GA and available to download https://aka.ms/AIPClient What’s new ? This version includes the following new features, fixes, and enhancements for the unified labeling scanner and client: Scanner usage logging in the Windows event log Scanner diagnostics tool improvements Improved scanner details output Updates for the …

Clarification about audit log improvements introduced in AIP Unified Labeling client 2.8.85, that allow clearer visibility and alignment with Office native audit logs: Audit logs for access events from the unified labeling client are now sent only when users open labeled or protected files, providing a clearer indication of user access. Information types are no …

Microsoft released AIP UL version 2.9.116 This is maintenance release that includes bug fixes only. It will correct bug that I talked about on a previous post : https://thibaultchatiron.fr/2021/02/03/problem-on-the-latest-version-2-9-111-of-the-aip-client/ For reminder, the issue was for the scenarios where users were not able to view protected files as expected in the following scenarios: When protected files …

An issue was identified in the latest GA version in the AIP Viewer and File Explorer in specific scenarios Some users are not able to view protected files in the following scenarios: When protected files are shared with users who don’t have an AIP policy configured, such as external users. This issue occurs only with …

New features for the unified labeling client Track document access and revoke access -> this feature still in public preview Added support for additional sensitive information types AIP UL client and scanner are cleared now for China clouds New features for the unified labeling scanner PowerShell support for disconnected scanner servers Support for NFS repositories …

Label separation control between Files & emails to Site & Groups is Generally Available within the Microsoft 365 Compliance Portal. Read more about it at: Use sensitivity labels with Microsoft Teams, Microsoft 365 groups, and SharePoint sites – Microsoft 365 Compliance | Microsoft Docs Integration Enabling sensitivity labels for containers means that you can now …

Azure Information Protection labeling and policy management in the Azure portal, as well as the Azure Information Protection classic client, will reach end of life on April-1-2021. Please plan to migrate to unified labeling and upgrade to the unified labeling client. Learn more about the migration or follow this tutorial.