Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
515 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Where I can see the justifications about activities downgrade labels? I activated the Log Analytics to see the logs but I can't see this information.
Only adding it now in case its useful to someone else. You need this data source:
CloudAppEvents
| where ActionType == "FileSensitivityLabelChanged"
| extend SensitivityLabelJustificationText_ = tostring(RawEventData.SensitivityLabelJustificationText)
| where isnotempty(SensitivityLabelJustificationText_)