Category: AIP

News Informatique

Modernized user-defined permissions experience for Word, Excel, and PowerPoint

There is a new experience for selecting which users should have which permissions when a sensitivity label configured for user-defined permissions is applied to a file in Microsoft 365 apps or when a user applies protection using standalone Information Rights Management. When this will happen: Preview (Worldwide, GCC): Microsoft will begin rolling out mid-July 2024 …

Azure Information Protection Add-in for Office – it is the end

The Azure Information Protection (AIP) Unified Labeling add-in for Office is retired on April 11th, 2024. When this will happen: Important retirement milestones are: How this will affect your organization: To continue using sensitivity labels powered by Microsoft Purview Information Protection in Office applications, you must transition to the built-in labeling experience in Microsoft 365 …

License enforcement for Microsoft Purview Information Protection for sensitivity labels

Microsoft Purview Information Protection helps organizations classify and protect their data while ensuring end user productivity. To apply a sensitivity label to documents, emails, meetings, groups, and sites manually, the following licenses are required for both the tenant admin and each end user: For both client and server-side automatic sensitivity labeling, the following licenses are …

Use double-key encryption to protect your most sensitive files and emails in Microsoft 365 Apps

Update of https://thibaultchatiron.fr/2023/07/31/use-double-key-encryption-to-protect-your-most-sensitive-files-and-emails-in-microsoft-365-apps/ To protect your most sensitive content, users of Microsoft 365 Apps can now use Double Key Encryption (DKE) for files and emails using the built-in labeling client. With DKE, Microsoft stores one key in Microsoft Azure and you hold the other key, ensuring that only you can ever decrypt protected content, under all circumstances. …

End of the Azure Information Protection Add-in for Office

Microsoft is retiring the Azure Information Protection (AIP) Unified Labeling add-in for Office on April 11th, 2024. When this will happen: The AIP Add-in for Office will be permanently disabled in Office after May 1st, 2024. How this will affect your organization: To continue using sensitivity labels powered by Microsoft Purview Information Protection in Office …

Information Protection: Full File Evidence for all workloads in Activity Explorer

This new feature grants the user the capability to view the source link of the file associated with the activity flagged in Activity Explorer. When this will happen: Rollout will begin in late January 2024 and is expected to be complete by early February 2024.  How this will affect your organization: Users can view the …

Data Loss Prevention – View-only mode for Data Loss Prevention and Information Protection Policies and Labels

This capability allows the admin with view-only restricted permissions to view the Data Loss Prevention and Information Protection policy configuration details without editing the policies or label configurations. When this will happen: Microsoft will begin rolling out in late December 2023 and complete by early February 2024. How this will affect your organization: 1. Assign …

Ability to change retention period on labels set to start retention based on “When items were labeled”

Previously, admins could not change the retention period set on existing labels configured to start retention from when items were labeled. This feature will remove this restriction, and the resulting behavior will be consistent with other retention label types.   When this will happen: Rollout will begin in mid-January 2024 and is expected to be complete …

Exchange auto-labeling supports non-mail enabled security groups

Service side auto-labeling now supports scoping of Exchange auto-labeling to non-mail enabled security groups. When this will happen: Rollout is expected to be complete by late November.  How this will affect your organization: Admins can create new or edit existing auto-labeling policies to include new Exchange locations for non-mail enabled security groups. What you need …

Microsoft Purview Information Protection: Auto labeling (for files at rest in SharePoint Online) can now label PDF files

Auto labeling (for files at rest in SharePoint Online) will soon label PDF files. When this will happen: Preview: Rollout to public preview will begin in mid-July 2023 and expect to complete by early August 2023.   How this will affect your organization: Once the changes are rolled out to your tenant, the following are …

Microsoft Purview compliance portal: PDF files encrypted with sensitivity label can be searched and eDiscovered

Public preview alert. We have started rolling out support for labeled PDF files in SharePoint Online. SharePoint now supports search, eDiscovery, DLP for sensitivity label encrypted PDFs. The sensitivity column will start showing the label names for newly uploaded PDF files. When this will happen: Preview: This rollout is underway and expected to complete by …

Microsoft Purview Information Protection: Discover and co-author documents labeled with user-defined permissions

Currently rolling out in public preview, SharePoint and OneDrive will support discovery and coauthoring of files labeled with user-defined permissions.  When this will happen: Rollout to public preview began in mid-June and is expected to be complete by early September. Standard release will begin in mid-September 2023 (previously early September) and is expected to be …

Microsoft Purview | Data Lifecycle Management and Records Management – Microsoft Graph APIs for extensibility

As a part of the extensibility vision and first release to Microsoft Graph, Microsoft is introducing three new APIs for retention labels, events, and event types in the Microsoft Graph beta environment. These APIs will enable you to customize and extend on what we have built in the product so far. These APIs can be …

Use double-key encryption to protect your most sensitive files and emails in Microsoft 365 Apps

To protect your most sensitive content, users of Microsoft 365 Apps can now use Double Key Encryption (DKE) for files and emails using the built-in labeling client. With DKE, Microsoft stores one key in Microsoft Azure and you hold the other key, ensuring that only you can ever decrypt protected content, under all circumstances. Sensitivity labels configured …

Maintain protection when creating PDFs [Preview]

Please review the blog post: Apply sensitivity labels to PDFs created with Office apps for additional details. Coming soon to public preview, Microsoft is introducing the ability to maintain label and protection for PDF files created from Microsoft Office apps.   When this will happen: Public preview: rollout will begin in late June and is expected to …

Sensitivity labels now apply to modified documents

If you’ve configured users for a default sensitivity label policy for Office documents, the label you chose will automatically be applied to Word, Excel, and PowerPoint documents you create or modify. Previously, this only applied to new documents only. Note: This update applies to Word, Excel, and PowerPoint on the Web, and Word and PowerPoint on …

Retirement announcement for AIP Audit Logs pipeline forwarding audit logs to Azure Log Analytics workspaces

Microsoft will no longer be onboarding new Log Analytics workspaces to store Azure Information Protection (AIP) audit logs. Note: Customers who have previously configured Log Analytics to store AIP audit logs will continue to receive forwarded audit logs into their workspaces until the data pipeline is fully retired. When this will happen: Microsoft will stop …

AIP – DLP On-Prem [Public Preview]

The DLP on-premises scanner crawls on-premises data-at-rest in file shares and SharePoint document libraries and folders for sensitive items that, if leaked, would pose a risk to your organization or pose a risk of compliance policy violation   This gives you the visibility and control you need to ensure that sensitive items are used and protected properly, and to …

AIP – Track and Revoke [General Availability]

Document tracking provides information for administrators about when a protected document was accessed.   If necessary, both admins and users can revoke document access for protected tracked documents.  This feature is available for AIP UL client version 2.9.111.0 or later 

MIP – DLP Alerts [General Availability]

Microsoft announces the General Availability of the Microsoft Data Loss Prevention Alerts Dashboard. This latest addition in the Microsoft’s data loss prevention solution provides customers with the ability to holistically investigate DLP policy violations across:  Exchange  SharePoint Online  OneDrive  Teams  Devices  Cloud apps  On-premises file shares  Learn more about the feature at: Learn about the data loss prevention Alerts …