Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
523 questions
Azure: MIP Policies on local clients
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 50%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHR%3C/text%3E%3C/svg%3E)
Hannes Roever
1
Reputation point
Hi. I have an office 365 E3 test license to test all different cases of labelling, policies, checking the MIP SDK etc. I dont use the AIP client(s), I just want to use integrated functions of the 365 office clients as well as of the 365 web apps. It all works very well so far, except one thing:
I have a policy that allows User A to add a label C. I have another policy that allows all users A, B and C to set a label A or B. So User A can set Label A, B and C, Users B and C can only set Label A and B.
This works great in the online apllications, all as it should. But on the client I installed (Windows) all users can always see all Labels. I tried all options, deleted accounts and only logged it e.g. with User B, also forced updates of the policies by deleting the registry entries etc. Sorting of the labels and policies in compliance center is correct as well. But no matter what I do, all policies are always shown when using the installed clients.
A second problem which seems to be related to this. is the justification when downgrading a label. I set this up for both policies and also online it works well. Using the clients it does not.
I would appreciate a fast solution as I want to demo this next week and defo need to work it on installed clients (actually thats the use case rather than the web apps).
Thanks!
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT 35,541 Reputation points Microsoft Employee2020-08-27T00:16:35.403+00:00 Can you please share you logs from Protect > Help and feedback.
Export Logs ?Also, I would recommend checking the troubleshooting guide for AIP label issues: https://support.microsoft.com/en-us/help/4516523/troubleshoot-azure-information-protection-policy
Sign in to comment