Where do I usually start when I want to deploy Information protection?

Antonette Cruz 20 Reputation points
2023-06-28T14:45:51.85+00:00

Hi,

I'm getting confuse on when to start in terms of deployment. I have read that AIP is under MS Purview, and there's this compliance portal.

Where do I usually start when I want to deploy Information protection? Is the scanning of will happen on azure? and configurations of SIT and policies will be in compliance portal? and is it automated?

I've read about on-premises scanner but I want it to be in Cloud only like SP, Teams and exchange for the mean time since I'm testing.

Thank you!

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
560 questions
Microsoft Security | Microsoft Purview
0 comments No comments
{count} votes

Accepted answer
  1. Givary-MSFT 35,626 Reputation points Microsoft Employee Moderator
    2023-06-29T11:41:51.8566667+00:00

    @Antonette Cruz Thank you for reaching out to us, to start deploying information protection you have to use compliance portal where you define labels for user/automatic labelling/assign license to the user to leverage information protection features/capabilities.

    Define label schema - Establish labeling schema with parent and sub-labels, user descriptions and priority.

    Publish labels to end user - Allow your end users to start manually labelling

    Label recommendation - Assist your end users in labeling with recommendations

    Automatic labeling - Scale your organization's labeling efforts with automation.

    Information Protection scanner runs as a service on Windows Server and lets you discover, classify, and protect files on the following data stores:

    1. UNC paths for network shares that use the SMB or NFS (Preview) protocols.
    2. SharePoint document libraries and folder for SharePoint Server 2019 through SharePoint Server 2013.

    Also would like to share - https://github.com/Azure/Cloud-Data-Security/blob/main/Scripts/docs.zip?raw=true which has the samples which can be used for testing various scenarios (configurations of SIT).

    Reference:

    https://learn.microsoft.com/en-us/microsoft-365/compliance/information-protection?view=o365-worldwide

    https://learn.microsoft.com/en-us/microsoft-365/compliance/deploy-scanner?view=o365-worldwide

    https://techcommunity.microsoft.com/t5/security-compliance-and-identity/the-microsoft-purview-information-protection-ninja-training-is/ba-p/2887478

    https://www.youtube.com/watch?v=PqoTUGzZcX4

    https://www.youtube.com/watch?v=7QPAjunoiPM&list=PL8wOlV8Hv3o_CSGXCt1I8WKX5_G1aah5d - Good to watch to understand the basics.

    Let me know if you have any further questions, feel free to post back.

    Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.