https://campbell.scot/tags/information-protection/ Recent content in Information-Protection on Ru Campbell MVP Hugo en-gb Sun, 13 Jun 2021 17:38:11 +0000 https://campbell.scot/three-cool-things-to-do-with-azure-information-protection/ Sun, 13 Jun 2021 17:38:11 +0000 https://campbell.scot/three-cool-things-to-do-with-azure-information-protection/ <p>In my last blog, I wrote about <a href="https://campbell.scot/3-considerations-for-aip-deployments/">three considerations for your Azure Information Protection deployments</a> and commented on often overlooked potential downsides, or at least areas with which to be cautious. In hindsight, it all feels a bit negative.  I am, for the record, an advocate of Microsoft 365 customers using AIP (sensitivity labels) in basically any circumstance it&rsquo;s appropriate to do so.  So in this blog, I&rsquo;ll counter the earlier post with three often overlooked useful things you can do with it.</p> https://campbell.scot/3-considerations-for-aip-deployments/ Sat, 15 May 2021 08:25:46 +0000 https://campbell.scot/3-considerations-for-aip-deployments/ <p>Azure Information Protection (AIP) - more accurately exposed to Microsoft 365 now as <strong>sensitivity labels</strong>- is close to the top of my favourite wins for securing your data in a Microsoft ecosystem.  While designing a detailed labelling and classification system is far from quick, it <em>is</em> quick to get up and running with baseline policies that protect your confidential company data from getting read outside the company.  Simply by applying a sensitivity label that limits access to confidential data to users in your domain, you&rsquo;ve covered a massive chunk of data loss scenarios.</p> https://campbell.scot/revoke-access-to-office-files-with-sensitivity-labels-and-azure-information-protection/ Thu, 08 Apr 2021 06:16:40 +0000 https://campbell.scot/revoke-access-to-office-files-with-sensitivity-labels-and-azure-information-protection/ <p>Most of us have had that &ldquo;oh &lt; <em>blank</em> &gt;&rdquo; moment where we have given someone access to someone only to immediately or later need to undo that access.  Azure Information Protection has historically been able to help us there.  AIP allowed us to create protected (encrypted) documents and also let us remove access.  However, in the move from &lsquo;classic&rsquo; AIP to the new <strong>unified labelling</strong> with <strong>sensitivity labels</strong>, the ability to revoke was lost in the transition.  Now it&rsquo;s back in preview, but unlike the classic version, it&rsquo;s managed on the client and not a web portal.</p> https://campbell.scot/microsoft-information-protection-sensitivity-labels-custom-user-permissions-and-do-not-forward/ Thu, 25 Feb 2021 15:02:30 +0000 https://campbell.scot/microsoft-information-protection-sensitivity-labels-custom-user-permissions-and-do-not-forward/ <p>With Microsoft Information Protection, you can apply <strong>sensitivity labels</strong> to files, emails, and containers such as SharePoint Libraries.  These labels apply <strong>protection</strong> which, in the context of files and emails, really means <strong>encryption</strong> using AES-128 or 256 (key size depends on file type).  The great thing about Information Protection is that you control an access control list of who is allowed to access the content and it&rsquo;s managed as a cloud service by Microsoft.  The document or message, when opened, checks who is authenticated (who is signed to Outlook or the Office 365 app, for example) and only allows access if they have permission.</p>