SlideShare a Scribd company logo

Scottish Summit 2022 - Microsoft Information Protection de-mystified

Albert Hoitingh
Albert Hoitingh

In this session for the 2022 edition of the Scottish Summit in Glasgow, I presented on Microsoft Information Protection. Subjects included the different clients, auto-classification, email protection and customization options using PowerShell

Technology
1 of 45
#ScottishSummit2022 #ScottishSummit2022 Microsoft Information Protection De-mystified Albert Hoitingh
#ScottishSummit2022 Thank You to our Sponsors… Event Sponsor Platinum Sponsors
#ScottishSummit2022 Thank You to our Sponsors… Gold Sponsors Accessibility Event Lunch Data Analytics Data Quality
#ScottishSummit2022 Speaker Albert Hoitingh InSpark • 25+ Years Experience in IT (sigh….) • Microsoft Purview consultant • CISSP and Microsoft MVP • History enthusiast “Has Microsoft renamed anything yet?” linkedin.com/in/appieh alberthoitingh.com twitter.com/alberthoitingh albert.hoitingh@gmail.com https://tinyurl.com/eadfn442
…the FBI recovered a blue 16GB SanDisk SD card… …the SD card was wrapped in plastic and placed between two slices of bread on half of a peanut butter sandwich…. Picture and information curtesy of: How a Navy veteran allegedly stole classified submarine docs (taskandpurpose.com)
#ScottishSummit2022 The Topics for today Microsoft Purview Labels overview Encryption Clients & Advanced settings Tips & tricks Wrapping up
Microsoft Purview Portfolio Prevent Insider Risks Insider risk management Communication compliance Information barriers Privileged access management Customer Lockbox Compliance management Compliance Score Compliance Manager Build-in templates Insights and auditing Search eDiscovery Standard | Premium Microsoft Defender for Cloud Apps Audit Standard | Premium Privacy Management Dashboard Information protection Sensitivity labels & encryption (mails, documents, sites, groups, PowerBI, data) Double key encryption Office 365 message encryption Data Lifecycle Management Data classification | Machine Learning Sensitive Information Types Records management & disposition Archive 3rd party information Metadata Prevent data loss Data loss prevention Endpoint data loss prevention On-premises data loss prevention Non-Microsoft cloud apps
#ScottishSummit2022 Microsoft Information Protection Discover Classify Protect Monitor
#ScottishSummit2022 Across platforms On-premises Classify and label data in on-premises repositories, including fileshares and SharePoint Server. Office Apps Label and protect Office files on Windows, Mac, iOS, Android and web. SPO | EXO | Teams | PowerBI Label and protect access to Microsoft Teams, SharePoint Online sites and PowerBI reports and dashboards. Office 365 Message Encryption. Label content automatically when at rest. Non-Microsoft cloud Use Microsoft Defender for Cloud Apps to extend the labeling to platforms like Box and Google Workspace. Unified classification, labeling and protection for sensitive information
#ScottishSummit2022 Unified labeling Sensitivity labels deep-dive
#ScottishSummit2022 Sensitivity labels • Different scopes: • Documents and e-mails • Containers • Structured data • Different functionality • But unified across the scopes
#ScottishSummit2022 Documents and e-mails • Label added as metadata • Label stays with document • Can be configured to: • Apply visual markings • Encrypt the document • Allow offline access • Work within DLP policies • Works with a hierarchy, parents/sublabels • Does not provide retention!
#ScottishSummit2022 Containers • Microsoft Teams | Microsoft 365 Groups | SharePoint Online sites • Privacy | External user access | • Sharing settings for SharePoint Online • Azure AD Conditional Access rules • No "default label" for documents • Specific label policy option • Document and container labels interact
#ScottishSummit2022 Containers Microsoft Purview (or Azure Purview as it was known) – see session by Erwin de Kreuk - SQL | Azure SQL | Azure Synapse | Azure Cosmos | Amazon AWS S3 PowerBI – apply label on download
#ScottishSummit2022 Demo time! Labels in action
#ScottishSummit2022 Encryption Complicated subject
#ScottishSummit2022 Encryption and labels • Uses Azure Rights Management • Requires Azure AD (or Microsoft Live) accounts • Microsoft Managed Keys | Bring Your Own Key | Double Key • RMS Connector for Exchange on-premises Microsoft Managed (Azure) key details • Content protection: Symmetric AES 128/256 bit • Key protection: Asymmetric RSA 2048 bit • Certificate signing: SHA-256
#ScottishSummit2022 Encryption and labels - beware • Licensing requirements & limitations • Azure AD accounts • Working with guests-users • Co-authoring and auto-save for Office (next)
#ScottishSummit2022 Filetypes are important • Some types only support labeling and no encryption) • Opening encrypted files: • Web-browser • Office and PDF files: native clients and Edge • Other supported files: AIP Viewer client • Beware the file extension
#ScottishSummit2022 Co-authoring and auto-save • Not possible in Office apps when encryption is enabled • Web-browser does support this • Can be enabled using GUI • But also PowerShell • Changes labeling metadata • Some limitations apply! • https://alberthoitingh.com/2021/12/01/ new-metadata-model-mip/
#ScottishSummit2022 As for e-mails Outlook with UL client • E-mail can inherit label from attachment • Office attachment inherit settings from e-mail Specific options (mind the attachments): • Do not forward (or print, save) • Encrypt only
#ScottishSummit2022 As for e-mails Beware! • Encrypt only (using a label) is only available in integrated client • Do not forward and encrypt can also be set without labels (Options | Encrypt)
#ScottishSummit2022 Demo time! Configuring the labels
#ScottishSummit2022 Different clients There’s a client for everyone…..
#ScottishSummit2022 Different clients AIP v1.x Classic client Deprecated Do not use UL v2.x Unified labeling Installable Integrated with Windows desktop As of 1/1/2022 in maintenance mode Office Integrated Build-in Office apps Microsoft 365 No install needed Other Mobile clients Adobe Acrobat RMS Sharing Can read label information More functions to come
#ScottishSummit2022 Different clients UL v2.x Office Integrated
#ScottishSummit2022 Office integrated limitations • BYOK/Double Key encryption • Usage logging event viewer • Do not forward button Outlook • Document tracking/revoking • Protection only mode • Label inheritance from e-mail • On-premises scanner • Custom permissions independently from label • Bar in Office • File explorer integration • PPDF support • Powershell labeling cmdlets
#ScottishSummit2022 Automatic detection And classification as well
#ScottishSummit2022 Auto-classification – Office Apps • Uses a tooltip within Office apps (Word, Excel, Outlook and PowerPoint) • Either recommend the label or automatically apply it - set in the label itself • Works in Office apps and Office Online – beware the differences • Outlook requires an advanced policy setting for matching highest classification • Some differences between Windows, Mac and mobile • Uses sensitive information types and/or trainable classifiers
#ScottishSummit2022 Auto-classification – Data @ rest • Automatic classification for SharePoint Online, OneDrive for Business and Exchange Online • SPO/OfB: Word, Excel, PowerPoint • EXO: PDF attachments • Some limitations: • List attachments are not supported • Open files cannot be auto-labeled • Maximum of 25,000 files per day • Maximum of 100 policies per tenant, each max 100 sites • Parent labels cannot be used • Existing metadata are not changed • Uses sensitive information types
#ScottishSummit2022 Auto-classification – non-Microsoft cloud • Automatic classification using file-policies in Microsoft Defender for Cloud Apps (on access) • Requires integration with MIP • Works with Word, Excel, PowerPoint and PDF documents • Works for Box and Google Workspace - more cloud apps will be supported in future • Amazon AWS S3 is supported using Azure Purview
#ScottishSummit2022 Auto-classification – on-premises • Automatic classification for on-premises fileshares, SharePoint Server en NAS storage • Uses the Azure Information Protection scanner • Requires the Unified Labeling client • Also used for on-premises DLP
#ScottishSummit2022 Demo time! Auto-classification
#ScottishSummit2022 Advanced configurations We’re not there yet….
#ScottishSummit2022 Advanced configurations (get-label -Identity “labelname").immutableid Get the label id, needed in other cmdlets Set-Label -Identity “labelname” -AdvancedSettings @{color="#40e0d0"} Specify the color of a label – option not available in the GUI Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{DisableMandatoryInOutlook="True"} Exempt Outlook messages from mandatory labeling – the GUI policy applies to documents and email messages
#ScottishSummit2022 Advanced configurations Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{EnableCustomPermissions="False"} Disable the custom permissions option in the Windows File Explorer Set-LabelPolicy -Identity “Policyname” -AdvancedSettings @{OutlookWarnUntrustedCollaborationLabel=“Labelid"} Warn, justify or block labeled messages or messages with specific labeled attachments using a default message
#ScottishSummit2022 Advanced configurations Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{OutlookJustifyTrustedDomains="contoso.com,fabrikam.com”} Disregard the warn, justify or block action for specific (trusted) domains Set-IRMConfiguration -DecryptAttachmentForEncryptOnly $true Remove the encryption from email attachments when downloaded using the browser – when “Encrypt only” is used
#ScottishSummit2022 Create your own warning • Warn, justify or block labeled messages or messages with specific labeled attachments using a custom message • Message and settings are configured using a .json-file • Multiple rules can be set-up, all are numbered • Be very careful... $filedata = Get-Content “policyfile.json" Set-LabelPolicy -Identity “Policyname" - AdvancedSettings @{OutlookCollaborationRule_1 =“$filedata"}
#ScottishSummit2022 Create your own warning • Warn, justify or block labeled messages or messages with specific labeled attachments using a custom message • Message and settings are configured using a .json-file • Multiple rules can be set-up, all are numbered • Be very careful... $filedata = Get-Content “policyfile.json" Set-LabelPolicy -Identity “Policyname" - AdvancedSettings @{OutlookCollaborationRule_1 =“$filedata"}
#ScottishSummit2022 Things to consider Nearing the end
#ScottishSummit2022 Tips, tricks and other things • Sharing an encrypted file | working with guests • Label/encrypt using DLP rules • Decrypt file in SPO: Unlock- SensitivityLabelEncryptedFile • Metadata change, MSIP_ cannot be used anymore • Container based – don’t affect documents & require AAD CA policies • Difference in clients • Custom configuration for UL client
#ScottishSummit2022 Tips, tricks and other things • Visual markings per app and restrictions • Use Defender for Cloud Apps to block downloads for labeled content or to apply label when downloading a document • Super User role • Encrypted PDF’s (Adobe Acrobat | Microsoft Edge) | Digitally signed PDF’s • Adobe Acrobat public preview • Custom permissions/encryption and eDiscovery
#ScottishSummit2022 Thank You to our Sponsors… Event Sponsor Platinum Sponsors
#ScottishSummit2022 Thank You to our Sponsors… Gold Sponsors Accessibility Event Lunch Data Analytics Data Quality
Thank you!

Recommended

CollabDaysBE - Microsoft Purview Information Protection demystified
CollabDaysBE - Microsoft Purview Information Protection demystifiedCollabDaysBE - Microsoft Purview Information Protection demystified
CollabDaysBE - Microsoft Purview Information Protection demystifiedAlbert Hoitingh
 
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley Park
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley ParkEncryption in Microsoft 365 - session for CollabDays UK - Bletchley Park
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley ParkAlbert Hoitingh
 
Microsoft Information Protection demystified Albert Hoitingh
Microsoft Information Protection demystified Albert HoitinghMicrosoft Information Protection demystified Albert Hoitingh
Microsoft Information Protection demystified Albert HoitinghAlbert Hoitingh
 
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptx
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptxCollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptx
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptxAlbert Hoitingh
 
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...Albert Hoitingh
 
Scottish Summit - Sensitivity labels deep dive
Scottish Summit - Sensitivity labels deep diveScottish Summit - Sensitivity labels deep dive
Scottish Summit - Sensitivity labels deep diveAlbert Hoitingh
 
Scottish Summit 2022 - Secure and manage your data in Microsoft Teams
Scottish Summit 2022 - Secure and manage your data in Microsoft TeamsScottish Summit 2022 - Secure and manage your data in Microsoft Teams
Scottish Summit 2022 - Secure and manage your data in Microsoft TeamsJasper Oosterveld
 
Scottish Summit - Azure Information Protection and SharePoint 2020
Scottish Summit - Azure Information Protection and SharePoint 2020Scottish Summit - Azure Information Protection and SharePoint 2020
Scottish Summit - Azure Information Protection and SharePoint 2020Albert Hoitingh
 

Recommended

CollabDaysBE - Microsoft Purview Information Protection demystified
CollabDaysBE - Microsoft Purview Information Protection demystifiedCollabDaysBE - Microsoft Purview Information Protection demystified
CollabDaysBE - Microsoft Purview Information Protection demystifiedAlbert Hoitingh
 
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley Park
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley ParkEncryption in Microsoft 365 - session for CollabDays UK - Bletchley Park
Encryption in Microsoft 365 - session for CollabDays UK - Bletchley ParkAlbert Hoitingh
 
Microsoft Information Protection demystified Albert Hoitingh
Microsoft Information Protection demystified Albert HoitinghMicrosoft Information Protection demystified Albert Hoitingh
Microsoft Information Protection demystified Albert HoitinghAlbert Hoitingh
 
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptx
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptxCollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptx
CollabDays NL 2022 - Albert Hoitingh - Encryption in M365 - Slideshare.pptxAlbert Hoitingh
 
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...
Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...Albert Hoitingh
 
Scottish Summit - Sensitivity labels deep dive
Scottish Summit - Sensitivity labels deep diveScottish Summit - Sensitivity labels deep dive
Scottish Summit - Sensitivity labels deep diveAlbert Hoitingh
 
Scottish Summit 2022 - Secure and manage your data in Microsoft Teams
Scottish Summit 2022 - Secure and manage your data in Microsoft TeamsScottish Summit 2022 - Secure and manage your data in Microsoft Teams
Scottish Summit 2022 - Secure and manage your data in Microsoft TeamsJasper Oosterveld
 
Scottish Summit - Azure Information Protection and SharePoint 2020
Scottish Summit - Azure Information Protection and SharePoint 2020Scottish Summit - Azure Information Protection and SharePoint 2020
Scottish Summit - Azure Information Protection and SharePoint 2020Albert Hoitingh
 
Information Barriers in MS Teams
Information Barriers in MS TeamsInformation Barriers in MS Teams
Information Barriers in MS TeamsNanddeep Nachan
 
Azure information protection and SharePoint
Azure information protection and SharePoint Azure information protection and SharePoint
Azure information protection and SharePoint Albert Hoitingh
 
Global Security and Compliance Conference - Cologne
Global Security and Compliance Conference - CologneGlobal Security and Compliance Conference - Cologne
Global Security and Compliance Conference - CologneAlbert Hoitingh
 
SPS Geneva - Azure information protection
SPS Geneva - Azure information protectionSPS Geneva - Azure information protection
SPS Geneva - Azure information protectionAlbert Hoitingh
 
SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012Scott_Brickey
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsBizTalk360
 
Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018Albert Hoitingh
 
CSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert HoitinghCSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert HoitinghNCCOMMS
 
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & DrewMicrosoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & DrewDrew Madelung
 
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022Chirag Patel
 
October 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know WebinarOctober 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know WebinarRobert Crane
 
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)Codit
 
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key VaultITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key VaultTom Kerkhove
 
IdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud MicrosoftIdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud MicrosoftIdentity Days
 
7.1. SDLC try me to implenment
7.1. SDLC try me to implenment7.1. SDLC try me to implenment
7.1. SDLC try me to implenmentdefconmoscow
 
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...Sébastien Paulet
 
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation ServicesWINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation ServicesChris Spanougakis
 
All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019 All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019 Sébastien Paulet
 
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...Chirag Patel
 
ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018prashant3535
 
Meetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss PreventionMeetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss PreventionAlbert Hoitingh
 
Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...Albert Hoitingh
 

More Related Content

Similar to Scottish Summit 2022 - Microsoft Information Protection de-mystified

Information Barriers in MS Teams
Information Barriers in MS TeamsInformation Barriers in MS Teams
Information Barriers in MS TeamsNanddeep Nachan
 
Azure information protection and SharePoint
Azure information protection and SharePoint Azure information protection and SharePoint
Azure information protection and SharePoint Albert Hoitingh
 
Global Security and Compliance Conference - Cologne
Global Security and Compliance Conference - CologneGlobal Security and Compliance Conference - Cologne
Global Security and Compliance Conference - CologneAlbert Hoitingh
 
SPS Geneva - Azure information protection
SPS Geneva - Azure information protectionSPS Geneva - Azure information protection
SPS Geneva - Azure information protectionAlbert Hoitingh
 
SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012Scott_Brickey
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsBizTalk360
 
Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018Albert Hoitingh
 
CSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert HoitinghCSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert HoitinghNCCOMMS
 
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & DrewMicrosoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & DrewDrew Madelung
 
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022Chirag Patel
 
October 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know WebinarOctober 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know WebinarRobert Crane
 
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)Codit
 
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key VaultITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key VaultTom Kerkhove
 
IdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud MicrosoftIdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud MicrosoftIdentity Days
 
7.1. SDLC try me to implenment
7.1. SDLC try me to implenment7.1. SDLC try me to implenment
7.1. SDLC try me to implenmentdefconmoscow
 
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...Sébastien Paulet
 
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation ServicesWINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation ServicesChris Spanougakis
 
All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019 All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019 Sébastien Paulet
 
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...Chirag Patel
 
ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018prashant3535
 

Similar to Scottish Summit 2022 - Microsoft Information Protection de-mystified (20)

Information Barriers in MS Teams
Information Barriers in MS TeamsInformation Barriers in MS Teams
Information Barriers in MS Teams
 
Azure information protection and SharePoint
Azure information protection and SharePoint Azure information protection and SharePoint
Azure information protection and SharePoint
 
Global Security and Compliance Conference - Cologne
Global Security and Compliance Conference - CologneGlobal Security and Compliance Conference - Cologne
Global Security and Compliance Conference - Cologne
 
SPS Geneva - Azure information protection
SPS Geneva - Azure information protectionSPS Geneva - Azure information protection
SPS Geneva - Azure information protection
 
SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012SharePoint Saturday Dayton 2012
SharePoint Saturday Dayton 2012
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s Assets
 
Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018Azure Information Protection at the Cybercrime and Security Forum 2018
Azure Information Protection at the Cybercrime and Security Forum 2018
 
CSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert HoitinghCSF18 Azure Information Protection - Albert Hoitingh
CSF18 Azure Information Protection - Albert Hoitingh
 
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & DrewMicrosoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
Microsoft Ignite Recap: Microsoft 365 Security & Compliance with Vlad & Drew
 
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
Understanding Security and Compliance in Microsoft Teams - Scottish Summit 2022
 
October 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know WebinarOctober 2022 CIAOPS Need to Know Webinar
October 2022 CIAOPS Need to Know Webinar
 
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
 
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key VaultITProceed 2015 - Securing Sensitive Data with Azure Key Vault
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
 
IdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud MicrosoftIdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
IdentityDays2022 - Gestion des privilèges sur le Cloud Microsoft
 
7.1. SDLC try me to implenment
7.1. SDLC try me to implenment7.1. SDLC try me to implenment
7.1. SDLC try me to implenment
 
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
aMS Aachen -Personal and confidential data - how to manage them in M365 2022-...
 
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation ServicesWINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
WINDOWS SERVER 2012 R2: Bring Your Own Device Using AD Federation Services
 
All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019 All about documents in O365 - aOS Singapore 2019
All about documents in O365 - aOS Singapore 2019
 
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
Understanding Security and Compliance in Microsoft Teams - M365 Saturday Pune...
 
ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018ADRecon - Detection CHCON 2018
ADRecon - Detection CHCON 2018
 

More from Albert Hoitingh

Meetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss PreventionMeetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss PreventionAlbert Hoitingh
 
Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...Albert Hoitingh
 
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...Albert Hoitingh
 
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?Albert Hoitingh
 
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptx
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptxCommsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptx
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptxAlbert Hoitingh
 
Teams Day Online V - Information Barriers - Communication Compliance and Micr...
Teams Day Online V - Information Barriers - Communication Compliance and Micr...Teams Day Online V - Information Barriers - Communication Compliance and Micr...
Teams Day Online V - Information Barriers - Communication Compliance and Micr...Albert Hoitingh
 
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...Albert Hoitingh
 
Microsoft 365 Chicago - eDiscovery and Microsoft Teams
Microsoft 365 Chicago - eDiscovery and Microsoft TeamsMicrosoft 365 Chicago - eDiscovery and Microsoft Teams
Microsoft 365 Chicago - eDiscovery and Microsoft TeamsAlbert Hoitingh
 
eDiscovery and Microsoft Teams
eDiscovery and Microsoft TeamseDiscovery and Microsoft Teams
eDiscovery and Microsoft TeamsAlbert Hoitingh
 
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss PreventionaMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss PreventionAlbert Hoitingh
 
Microsoft 365 and Microsoft Cloud App Security
Microsoft 365 and Microsoft Cloud App SecurityMicrosoft 365 and Microsoft Cloud App Security
Microsoft 365 and Microsoft Cloud App SecurityAlbert Hoitingh
 
Working securely with Microsoft Teams - Techorama 2021
Working securely with Microsoft Teams - Techorama 2021Working securely with Microsoft Teams - Techorama 2021
Working securely with Microsoft Teams - Techorama 2021Albert Hoitingh
 
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance Albert Hoitingh
 
Global Security and Compliance Community conference 2021
Global Security and Compliance Community conference 2021Global Security and Compliance Community conference 2021
Global Security and Compliance Community conference 2021Albert Hoitingh
 
Teams Nation December 2020 - Teams Compliance
Teams Nation December 2020 - Teams ComplianceTeams Nation December 2020 - Teams Compliance
Teams Nation December 2020 - Teams ComplianceAlbert Hoitingh
 
CollabDays BeNeLux Sensitivity labels: what's new
CollabDays BeNeLux Sensitivity labels: what's newCollabDays BeNeLux Sensitivity labels: what's new
CollabDays BeNeLux Sensitivity labels: what's newAlbert Hoitingh
 
Teams Day Online - Microsoft Teams Governance
Teams Day Online - Microsoft Teams GovernanceTeams Day Online - Microsoft Teams Governance
Teams Day Online - Microsoft Teams GovernanceAlbert Hoitingh
 
Microsoft 365 UK Usergroup 2020 Sensitivity labels
Microsoft 365 UK Usergroup 2020 Sensitivity labelsMicrosoft 365 UK Usergroup 2020 Sensitivity labels
Microsoft 365 UK Usergroup 2020 Sensitivity labelsAlbert Hoitingh
 
Dutch Microsoft Security Meetup Windows Information Protection
Dutch Microsoft Security Meetup Windows Information ProtectionDutch Microsoft Security Meetup Windows Information Protection
Dutch Microsoft Security Meetup Windows Information ProtectionAlbert Hoitingh
 
Office 365 and SharePoint Connect 2019 - Dispose with care
Office 365 and SharePoint Connect 2019 - Dispose with careOffice 365 and SharePoint Connect 2019 - Dispose with care
Office 365 and SharePoint Connect 2019 - Dispose with careAlbert Hoitingh
 

More from Albert Hoitingh (20)

Meetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss PreventionMeetup DIWUG Januari 2024 - Data Loss Prevention
Meetup DIWUG Januari 2024 - Data Loss Prevention
 
Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...Microsoft Purview Information Barriers and Communication Compliance and Micro...
Microsoft Purview Information Barriers and Communication Compliance and Micro...
 
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...
NACS 2022 - Information Barriers and Communication Compliance and Microsoft T...
 
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?
ExpertsLive NL 2022 - Microsoft Purview - What's in it for my organization?
 
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptx
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptxCommsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptx
Commsverse 2022 eDiscovery and Microsoft Teams - SlideShare.pptx
 
Teams Day Online V - Information Barriers - Communication Compliance and Micr...
Teams Day Online V - Information Barriers - Communication Compliance and Micr...Teams Day Online V - Information Barriers - Communication Compliance and Micr...
Teams Day Online V - Information Barriers - Communication Compliance and Micr...
 
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...
Dutch Information Worker User Group - January 2022 - eDiscovery and Microsoft...
 
Microsoft 365 Chicago - eDiscovery and Microsoft Teams
Microsoft 365 Chicago - eDiscovery and Microsoft TeamsMicrosoft 365 Chicago - eDiscovery and Microsoft Teams
Microsoft 365 Chicago - eDiscovery and Microsoft Teams
 
eDiscovery and Microsoft Teams
eDiscovery and Microsoft TeamseDiscovery and Microsoft Teams
eDiscovery and Microsoft Teams
 
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss PreventionaMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention
aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention
 
Microsoft 365 and Microsoft Cloud App Security
Microsoft 365 and Microsoft Cloud App SecurityMicrosoft 365 and Microsoft Cloud App Security
Microsoft 365 and Microsoft Cloud App Security
 
Working securely with Microsoft Teams - Techorama 2021
Working securely with Microsoft Teams - Techorama 2021Working securely with Microsoft Teams - Techorama 2021
Working securely with Microsoft Teams - Techorama 2021
 
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance
Microsoft 365 Security & Compliance User Group - Microsoft Teams compliance
 
Global Security and Compliance Community conference 2021
Global Security and Compliance Community conference 2021Global Security and Compliance Community conference 2021
Global Security and Compliance Community conference 2021
 
Teams Nation December 2020 - Teams Compliance
Teams Nation December 2020 - Teams ComplianceTeams Nation December 2020 - Teams Compliance
Teams Nation December 2020 - Teams Compliance
 
CollabDays BeNeLux Sensitivity labels: what's new
CollabDays BeNeLux Sensitivity labels: what's newCollabDays BeNeLux Sensitivity labels: what's new
CollabDays BeNeLux Sensitivity labels: what's new
 
Teams Day Online - Microsoft Teams Governance
Teams Day Online - Microsoft Teams GovernanceTeams Day Online - Microsoft Teams Governance
Teams Day Online - Microsoft Teams Governance
 
Microsoft 365 UK Usergroup 2020 Sensitivity labels
Microsoft 365 UK Usergroup 2020 Sensitivity labelsMicrosoft 365 UK Usergroup 2020 Sensitivity labels
Microsoft 365 UK Usergroup 2020 Sensitivity labels
 
Dutch Microsoft Security Meetup Windows Information Protection
Dutch Microsoft Security Meetup Windows Information ProtectionDutch Microsoft Security Meetup Windows Information Protection
Dutch Microsoft Security Meetup Windows Information Protection
 
Office 365 and SharePoint Connect 2019 - Dispose with care
Office 365 and SharePoint Connect 2019 - Dispose with careOffice 365 and SharePoint Connect 2019 - Dispose with care
Office 365 and SharePoint Connect 2019 - Dispose with care
 

Recently uploaded

GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 

Recently uploaded (20)

GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 

Scottish Summit 2022 - Microsoft Information Protection de-mystified

  • 2. #ScottishSummit2022 Thank You to our Sponsors… Event Sponsor Platinum Sponsors
  • 3. #ScottishSummit2022 Thank You to our Sponsors… Gold Sponsors Accessibility Event Lunch Data Analytics Data Quality
  • 4. #ScottishSummit2022 Speaker Albert Hoitingh InSpark • 25+ Years Experience in IT (sigh….) • Microsoft Purview consultant • CISSP and Microsoft MVP • History enthusiast “Has Microsoft renamed anything yet?” linkedin.com/in/appieh alberthoitingh.com twitter.com/alberthoitingh albert.hoitingh@gmail.com https://tinyurl.com/eadfn442
  • 5. …the FBI recovered a blue 16GB SanDisk SD card… …the SD card was wrapped in plastic and placed between two slices of bread on half of a peanut butter sandwich…. Picture and information curtesy of: How a Navy veteran allegedly stole classified submarine docs (taskandpurpose.com)
  • 6. #ScottishSummit2022 The Topics for today Microsoft Purview Labels overview Encryption Clients & Advanced settings Tips & tricks Wrapping up
  • 7. Microsoft Purview Portfolio Prevent Insider Risks Insider risk management Communication compliance Information barriers Privileged access management Customer Lockbox Compliance management Compliance Score Compliance Manager Build-in templates Insights and auditing Search eDiscovery Standard | Premium Microsoft Defender for Cloud Apps Audit Standard | Premium Privacy Management Dashboard Information protection Sensitivity labels & encryption (mails, documents, sites, groups, PowerBI, data) Double key encryption Office 365 message encryption Data Lifecycle Management Data classification | Machine Learning Sensitive Information Types Records management & disposition Archive 3rd party information Metadata Prevent data loss Data loss prevention Endpoint data loss prevention On-premises data loss prevention Non-Microsoft cloud apps
  • 9. #ScottishSummit2022 Across platforms On-premises Classify and label data in on-premises repositories, including fileshares and SharePoint Server. Office Apps Label and protect Office files on Windows, Mac, iOS, Android and web. SPO | EXO | Teams | PowerBI Label and protect access to Microsoft Teams, SharePoint Online sites and PowerBI reports and dashboards. Office 365 Message Encryption. Label content automatically when at rest. Non-Microsoft cloud Use Microsoft Defender for Cloud Apps to extend the labeling to platforms like Box and Google Workspace. Unified classification, labeling and protection for sensitive information
  • 11. #ScottishSummit2022 Sensitivity labels • Different scopes: • Documents and e-mails • Containers • Structured data • Different functionality • But unified across the scopes
  • 12. #ScottishSummit2022 Documents and e-mails • Label added as metadata • Label stays with document • Can be configured to: • Apply visual markings • Encrypt the document • Allow offline access • Work within DLP policies • Works with a hierarchy, parents/sublabels • Does not provide retention!
  • 13. #ScottishSummit2022 Containers • Microsoft Teams | Microsoft 365 Groups | SharePoint Online sites • Privacy | External user access | • Sharing settings for SharePoint Online • Azure AD Conditional Access rules • No "default label" for documents • Specific label policy option • Document and container labels interact
  • 14. #ScottishSummit2022 Containers Microsoft Purview (or Azure Purview as it was known) – see session by Erwin de Kreuk - SQL | Azure SQL | Azure Synapse | Azure Cosmos | Amazon AWS S3 PowerBI – apply label on download
  • 17. #ScottishSummit2022 Encryption and labels • Uses Azure Rights Management • Requires Azure AD (or Microsoft Live) accounts • Microsoft Managed Keys | Bring Your Own Key | Double Key • RMS Connector for Exchange on-premises Microsoft Managed (Azure) key details • Content protection: Symmetric AES 128/256 bit • Key protection: Asymmetric RSA 2048 bit • Certificate signing: SHA-256
  • 18. #ScottishSummit2022 Encryption and labels - beware • Licensing requirements & limitations • Azure AD accounts • Working with guests-users • Co-authoring and auto-save for Office (next)
  • 19. #ScottishSummit2022 Filetypes are important • Some types only support labeling and no encryption) • Opening encrypted files: • Web-browser • Office and PDF files: native clients and Edge • Other supported files: AIP Viewer client • Beware the file extension
  • 20. #ScottishSummit2022 Co-authoring and auto-save • Not possible in Office apps when encryption is enabled • Web-browser does support this • Can be enabled using GUI • But also PowerShell • Changes labeling metadata • Some limitations apply! • https://alberthoitingh.com/2021/12/01/ new-metadata-model-mip/
  • 21. #ScottishSummit2022 As for e-mails Outlook with UL client • E-mail can inherit label from attachment • Office attachment inherit settings from e-mail Specific options (mind the attachments): • Do not forward (or print, save) • Encrypt only
  • 22. #ScottishSummit2022 As for e-mails Beware! • Encrypt only (using a label) is only available in integrated client • Do not forward and encrypt can also be set without labels (Options | Encrypt)
  • 25. #ScottishSummit2022 Different clients AIP v1.x Classic client Deprecated Do not use UL v2.x Unified labeling Installable Integrated with Windows desktop As of 1/1/2022 in maintenance mode Office Integrated Build-in Office apps Microsoft 365 No install needed Other Mobile clients Adobe Acrobat RMS Sharing Can read label information More functions to come
  • 27. #ScottishSummit2022 Office integrated limitations • BYOK/Double Key encryption • Usage logging event viewer • Do not forward button Outlook • Document tracking/revoking • Protection only mode • Label inheritance from e-mail • On-premises scanner • Custom permissions independently from label • Bar in Office • File explorer integration • PPDF support • Powershell labeling cmdlets
  • 29. #ScottishSummit2022 Auto-classification – Office Apps • Uses a tooltip within Office apps (Word, Excel, Outlook and PowerPoint) • Either recommend the label or automatically apply it - set in the label itself • Works in Office apps and Office Online – beware the differences • Outlook requires an advanced policy setting for matching highest classification • Some differences between Windows, Mac and mobile • Uses sensitive information types and/or trainable classifiers
  • 30. #ScottishSummit2022 Auto-classification – Data @ rest • Automatic classification for SharePoint Online, OneDrive for Business and Exchange Online • SPO/OfB: Word, Excel, PowerPoint • EXO: PDF attachments • Some limitations: • List attachments are not supported • Open files cannot be auto-labeled • Maximum of 25,000 files per day • Maximum of 100 policies per tenant, each max 100 sites • Parent labels cannot be used • Existing metadata are not changed • Uses sensitive information types
  • 31. #ScottishSummit2022 Auto-classification – non-Microsoft cloud • Automatic classification using file-policies in Microsoft Defender for Cloud Apps (on access) • Requires integration with MIP • Works with Word, Excel, PowerPoint and PDF documents • Works for Box and Google Workspace - more cloud apps will be supported in future • Amazon AWS S3 is supported using Azure Purview
  • 32. #ScottishSummit2022 Auto-classification – on-premises • Automatic classification for on-premises fileshares, SharePoint Server en NAS storage • Uses the Azure Information Protection scanner • Requires the Unified Labeling client • Also used for on-premises DLP
  • 35. #ScottishSummit2022 Advanced configurations (get-label -Identity “labelname").immutableid Get the label id, needed in other cmdlets Set-Label -Identity “labelname” -AdvancedSettings @{color="#40e0d0"} Specify the color of a label – option not available in the GUI Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{DisableMandatoryInOutlook="True"} Exempt Outlook messages from mandatory labeling – the GUI policy applies to documents and email messages
  • 36. #ScottishSummit2022 Advanced configurations Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{EnableCustomPermissions="False"} Disable the custom permissions option in the Windows File Explorer Set-LabelPolicy -Identity “Policyname” -AdvancedSettings @{OutlookWarnUntrustedCollaborationLabel=“Labelid"} Warn, justify or block labeled messages or messages with specific labeled attachments using a default message
  • 37. #ScottishSummit2022 Advanced configurations Set-LabelPolicy -Identity “policyname” -AdvancedSettings @{OutlookJustifyTrustedDomains="contoso.com,fabrikam.com”} Disregard the warn, justify or block action for specific (trusted) domains Set-IRMConfiguration -DecryptAttachmentForEncryptOnly $true Remove the encryption from email attachments when downloaded using the browser – when “Encrypt only” is used
  • 38. #ScottishSummit2022 Create your own warning • Warn, justify or block labeled messages or messages with specific labeled attachments using a custom message • Message and settings are configured using a .json-file • Multiple rules can be set-up, all are numbered • Be very careful... $filedata = Get-Content “policyfile.json" Set-LabelPolicy -Identity “Policyname" - AdvancedSettings @{OutlookCollaborationRule_1 =“$filedata"}
  • 39. #ScottishSummit2022 Create your own warning • Warn, justify or block labeled messages or messages with specific labeled attachments using a custom message • Message and settings are configured using a .json-file • Multiple rules can be set-up, all are numbered • Be very careful... $filedata = Get-Content “policyfile.json" Set-LabelPolicy -Identity “Policyname" - AdvancedSettings @{OutlookCollaborationRule_1 =“$filedata"}
  • 41. #ScottishSummit2022 Tips, tricks and other things • Sharing an encrypted file | working with guests • Label/encrypt using DLP rules • Decrypt file in SPO: Unlock- SensitivityLabelEncryptedFile • Metadata change, MSIP_ cannot be used anymore • Container based – don’t affect documents & require AAD CA policies • Difference in clients • Custom configuration for UL client
  • 42. #ScottishSummit2022 Tips, tricks and other things • Visual markings per app and restrictions • Use Defender for Cloud Apps to block downloads for labeled content or to apply label when downloading a document • Super User role • Encrypted PDF’s (Adobe Acrobat | Microsoft Edge) | Digitally signed PDF’s • Adobe Acrobat public preview • Custom permissions/encryption and eDiscovery
  • 43. #ScottishSummit2022 Thank You to our Sponsors… Event Sponsor Platinum Sponsors
  • 44. #ScottishSummit2022 Thank You to our Sponsors… Gold Sponsors Accessibility Event Lunch Data Analytics Data Quality