Share via

AIP Scanners and dataCenter replication - best practice advice sought

Terry Hugill 1 Reputation point
2021-11-29T10:22:51.207+00:00

I have a situation where we'd like to implement AIP scanners across two datacentres. The first datacentre replicates data to the second datacentre within 10 minutes of data being saved. My thinking is that we will need to implement two AIP scanners (or more) to cover the labelling at both sites. As the scanning is not real time I would need to cover both data respositories with one or more scanners. Even this does not fill me with confidence that if datacentre one went down and the service was switched to datacentre two that they have the same labels applied. I have searched Google for answers, but none are forthcoming. Has anybody completed an AIP Scanner install in a similar scenario, and what recommendations would you give please?

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
522 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Marilee Turscak-MSFT 35,196 Reputation points Microsoft Employee
    2021-12-02T00:03:43.85+00:00

    In the article Best practices for deploying and using the AIP UL scanner, Stanislav Belov shares best practices for deploying AIP across two data centers.

    One way to replicate data is to use a highly available shared SQL environment, like below.

    154239-image.png

    As a backup database for the AIP scanner, it is highly recommended as a best practice to install SQL Enterprise or Standard edition in a production environment and SQL Express edition in a test environment.

    Let me know if this helps at all and if it is what you are looking for.

    0 comments