![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 55.00000000000001%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
1,219 questions
@Ahmed Sh - Thanks for the question and using MS Q&A platform.
Based on the information you provided, it seems that the "Upload to a restricted cloud service domain or access from an unallowed browser" action in your DLP policy is not working as expected.
One possible reason for this could be that the policy enforcement mode is set to "Audit" instead of "Block". You mentioned that the policy is configured to block the action, but the enforcement action is always audit. Please check the policy settings to ensure that the enforcement mode is set to "Block" for this action.
Another possible reason could be that the service domains and domain groups added in the DLP settings are not configured correctly. Please review the domains and domain groups added to ensure that they are correct and that they are configured with the correct action of "Block".
Lastly, it is possible that the unallowed browser specified in the policy is not being recognized correctly. Please check the policy settings to ensure that the unallowed browser is specified correctly.
If none of these solutions work, it may be necessary to create a support ticket to further investigate the issue.