AIP Scanner for Sensitive Information Types

jpcapone 1,321 Reputation points
2023-10-03T13:28:30.3533333+00:00

When I run a test AIP scan using the default configuration listed here it still seems that the sensitive info types that are found have to be associated with an existing label. I am basing this on the detailed report that is generated after each scanner run. I would think that this option would hinge the content scan job setting for Info types to be discovered, and if it is set to ALL or Policy only. When I set it to ALL, I am not seeing a report of ALL sensitive info types, just those associated with a label. Is this the correct behavior?

EDIT: I created a custom DLP policy based off of the U.S. Financial Data SSN template and put it into test mode. After doing this I ran another scan and noted that the various information types did show up in the detailed report. Is this the expected behavior?

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
521 questions
Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
964 questions
{count} votes