DLP - Encrypt email messages "Choose Protection Setting" dropdown is not working

Question

Hi,

I am setting up a DLP policy for my organization and am having trouble choosing the protection setting to encrypt email messages. I am able to choose "Encrypt email messages" but the dropdown to choose the protection setting is not "dropping down" to choose a protection setting. Clicking the field just highlights the box. When clicking "save" at the bottom of the page, an error message populates saying "You must choose a protection setting". How do I fix this problem? For further context, I have only linked Exchange email as the location to apply the policy.

Thank you!

Answer 1

Hi @ShallowCopy ,

Could you try to create the DLP policy you need using the cmdlet? If yes, there is a problem with the EAC interface and you may need to contact the appropriate technical support; if not, you may not have the correct permissions or some of your functions are disabled, so you may do the corresponding troubleshooting.

Refer to: New-DlpCompliancePolicy

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". 

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

For this You must activate the Rights Management service (RMS) before you can use the Information Rights Management (IRM) features of Microsoft 365 applications and services. After you activate RMS, your organization can start to protect important documents and emails by using Azure RMS. This information protection solution can protect all file types and integrates with client applications like Excel, Microsoft Word, and others, Exchange Online and SharePoint Online, and servers such as Microsoft Exchange and Microsoft SharePoint.

After Following the Solution Just Hit Refresh and you will be able To Change the Rule

Here is the Solution
Activate protection via PowerShell

You must use PowerShell to activate the Rights Management protection service (Azure RMS). You can no longer activate or deactivate this service from the Azure portal.

Install the AIPService module, to configure and manage the protection service. For instructions, see Installing the AIPService PowerShell module.

From a PowerShell session, run Connect-AipService, and when prompted, provide the Global Administrator account details for your Azure Information Protection tenant.

Run Get-AipService to confirm whether the protection service is activated. A status of Enabled confirms activation; Disabled indicates that the service is deactivated.

To activate the service, run Enable-AipService.

Answer 3

Hi @ShallowCopy ,

You could click on the dropdown menu to choose a protection setting. Are you clicking on the dropdown here to not show the options? You could try refreshing the page, if it still doesn't work, there may be a problem with the admin center and you need to contact a technician to troubleshoot.

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". 

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.