Introduction
Adaptive Protection in Microsoft Purview helps organizations dynamically enforce security controls based on risk levels detected through machine learning analysis of user activities and content interactions. By integrating with Data loss prevention (DLP), Data lifecycle management (DLM), and Conditional Access, Adaptive Protection ensures that high-risk users face stricter controls while low-risk users maintain productivity.
DLP policies help prevent data exfiltration, while DLM automatically preserves deleted content for high-risk users, ensuring critical data isn't lost due to malicious or accidental deletion. These automated responses reduce the overhead of manually reviewing alerts and applying controls, allowing organizations to focus on the most pressing risks.
Learning objectives
Upon completion of this module, you should be able to:
- Describe Adaptive Protection and its role in dynamically mitigating risks.
- Configure risk level settings and customize risk levels based on your organization's needs.
- Set up Adaptive Protection with quick or custom setup.
- Manage Adaptive Protection to review policy metrics, track in-scope users, and assess risk levels.
Prerequisites
- Fundamental knowledge of Microsoft Purview Data Loss Prevention (DLP)
- Understanding of Microsoft Purview Insider Risk Management
- Basic familiarity with Data lifecycle management (DLM) concepts