Implement endpoint data loss prevention (DLP) with Microsoft Purview
Intermediate
Administrator
Microsoft Purview
Microsoft 365
Office 365
Cloud and email DLP policies can't follow files once they're downloaded to a device. Endpoint DLP in Microsoft Purview closes that gap by enforcing restrictions on USB transfers, browser uploads, printing, and other activities at the OS level. Learn how to onboard devices, configure settings, create policies in simulation, and decide when to enable just-in-time protection.
Learning objectives
When you finish with this module, you'll be able to:
- Identify where endpoint DLP fits in a broader DLP strategy and what activities it protects against
- Onboard devices for endpoint DLP using the method that matches your environment
- Configure endpoint DLP settings that balance protection with user productivity
- Create and manage endpoint DLP policies with appropriate conditions, actions, and simulation
- Determine when just-in-time protection is appropriate and choose the right fallback action
Prerequisites
- Cloud computing concepts
- Microsoft 365 product and services