Share via

AIP Scanner does not scan all SharePoint OnPrem site collections

Bitrick, Jim (FAA) 0 Reputation points
2023-11-07T16:53:29.8866667+00:00

We are attempting to perform AIP scans of our on-prem SharePoint 2019 farm but cannot crawl any site collections below the root directory without explicitly giving it the site collection name. We have verified SharePoint permissions to the AIP scanner account are correct and are able to scan each site individually. According to Microsoft docs, you should be able to scan all SharePoint collections under one URL i.e. - https://example.com. Is anyone else experiencing this behavior?

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
560 questions
Microsoft 365 and Office | SharePoint | For business | Windows
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JamesTran-MSFT 36,911 Reputation points Microsoft Employee Moderator
    2023-11-09T19:35:56.2166667+00:00

    @Bitrick, Jim (FAA)

    Thank you for your post!

    I understand that the information protection scanner isn't performing scans within your on-prem SharePoint site collections below the root directory (http://<SharePoint server name>), without you having to explicitly give it the site collection name (i.e. http://<SharePoint server name>/<subsite name>).

    To help you troubleshoot this issue I'll share some steps below:

    1. I noticed you verified that the SharePoint permissions to the AIP scanner account are correct, since you can scan each site individually. However, can you also confirm you set up the appropriate Site Collection Auditor Policy configuration? To learn more about how to manage your SharePoint policy levels see, manage permission policies for a web application.
    2. If the Site Collection Auditor policy is configured correctly, can you also ensure your Content scan job Repositories are correct?

    If everything is correct with your scanner's configuration - I found a similar issue from another customer where you should be able to reference the Resolve issues with information protection scanner deployment documentation to further troubleshoot your issue.

    • If you're still having issues, can you share any error messages that you're running into?

    Additional Links:

    I hope this helps!

    If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.

    If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.