Notiz
Zougrëff op dës Säit erfuerdert Autorisatioun. Dir kënnt probéieren, Iech unzemellen oder Verzeechnesser ze änneren.
Zougrëff op dës Säit erfuerdert Autorisatioun. Dir kënnt probéieren, Verzeechnesser ze änneren.
To help you protect sensitive data on endpoint devices, Microsoft provides a default Microsoft Purview data loss prevention (DLP) policy called Default policy for devices.
Tip
Get started with Microsoft Security Copilot to explore new ways to work smarter and faster using the power of AI. Learn more about Microsoft Security Copilot in Microsoft Purview.
Licensing
For information on licensing, see
What does the default policy do?
This default policy looks for items with the sensitive information type Credit card number It's configured like this.
- Admin units: Full directory
- Choose where to apply the policy: Devices > All users, groups, devices, device groups
- SharePoint sites > All sites
- OneDrive accounts > All users and groups
- Conditions:
- Content contains > Credit card number
- Action:
- Audit or restrict activities on devices
- Upload to a restricted cloud service domain or access from an unallowed browser > Audit only
- Copy to clipboard > Audit only
- Copy to a removable USB device > Audit only
- Copy to a network share > Audit only
- Print > Audit only
- Copy or move using unallowed Bluetooth app > Audit only
- Copy or move using RDP > Audit only
- App access restrictions > Access by restricted apps > Audit only
- Audit or restrict activities on devices
- Policy mode: Turn the policy on immediately
Administrator can view the activities and edit the policies details by logging into the Microsoft Purview portal.
Admins can view this policy in the Microsoft Purview portal. Navigate to Data Loss prevention > Policies.
Edit or delete the default policy
To edit the default policy for better performance or to delete it, just use an account with DLP Compliance Management permissions. For more information, see, Permissions.