Admin Guide: Azure Information Protection classic client files and client usage logging

After you have installed the Azure Information Protection classic client, you might need to know where files are located and monitor how the client is being used.

File locations for the Azure Information Protection client

Client files:

  • For 64-bit operating systems: \ProgramFiles (x86)\Microsoft Azure Information Protection

  • For 32-bit operating systems: \Program Files\Microsoft Azure Information Protection

Client logs files and currently installed policy file:

  • For 64-bit and 32-bit operating systems: %localappdata%\Microsoft\MSIP

Usage logging for the Azure Information Protection classic client

The client logs user activity to the local Windows event log Applications and Services Logs > Azure Information Protection. The events include the following information:

  • Client version, policy ID

  • IP addresses of the signed in user

  • File name and location

  • Action:

    • Set label: Information ID 101​

    • Set label (lower): Information ID 102

    • Set label (higher): Information ID 103​

    • Remove label: Information ID 104​

    • Recommended label tooltip: Information 105​

    • Apply custom protection: Information ID 201​

    • Remove custom protection: Information ID 202​

    • Outlook warn message: Information ID 301

    • Outlook justify message: Information ID 302

    • Outlook block message: Information ID 303

    • Sign in (operational): Information ID 902​

    • Download policy (operational): Information ID 901

  • Action source:

    • Manual ​

    • Recommended​

    • Automatic ​

    • System (for sign in and download policy)

    • Default

  • Label before and after action ​

  • Protection before and after action​

  • User justification (when applicable)

  • Custom permissions (when applicable) that includes the usage rights by their encoding name for the specified users, groups, or organizations

The events for Outlook warn, justify, and block messages require advanced client settings. For more information, see Implement pop-up messages in Outlook that warn, justify, or block emails being sent.

Next steps

Now that you've identified all the log files associated with the Azure Information Protection client, see the following for additional information that you might need to support this client: