Chris H Chris H 81 1 1 gold badge 1 1 silver badge 3 3 bronze badges. Have you looked at auditing? You could also look into Azure Rights Management, if you want to protect the pics and docs too. It also has alot of logging: technet. Add a comment. Active Oldest Votes. Improve this answer. Thanks Waqas. What would you advise for a situation like ours? I am not sure about it, because so far i haven't seen any 3rd party solution for it.
I would open a support ticket with MSFT team and seek guidance from them. Bradley Geldenhuys Bradley Geldenhuys 11 1 1 bronze badge. Evlo Evlo 1 1 silver badge 9 9 bronze badges. Robban Robban 1, 7 7 silver badges 16 16 bronze badges.
Thanks a lot Robban. SBX - Heading. Helpful resources. SBX - Ask Questions. Community Forums. Ask a question. Personalize your experience! They are most interested in how users share HBI information. The solution detects HBI information and aggregates this data into the dashboards, as follows:.
Only authorized users can view the dashboards. Management and security team members get different views according to the type of information they need. Authorized dashboard users are:. Leadership looks at aggregated numbers and trends in the dashboards to see how well policies are working and the impact of policy changes.
To learn when and where sensitive information is shared inappropriately, dashboard data is evaluated, such as:. This data shows that most sharing is appropriate. Less than 10 percent of SharePoint sites have externally shared content, even though many more are set up for it. The security team is most interested in HBI sharing and if the sharing is appropriate. Authorized users can drill down into the dashboards to get more detailed information, such as the groups sharing the most HBI information.
While there are about 80, external users, most of the information shared with them is LBI. The security team prefers sharing on OneDrive for Business because users explicitly share a single document. The following figure shows that most sharing is, in fact, on OneDrive for Business. Figure 5. The team also wants to know who does the most sharing.
The next dashboard shows the distribution of sharing. This dashboard reports the number of documents found daily that contain regulated data. Other DLP dashboards give the number of OneDrive for Business and SharePoint instances by user category—employee, intern, or vendor—and also file type.
The dashboards reveal that most users at Microsoft share HBI appropriately, in keeping with company policies. Even so, the less HBI shared, the lower the risk of sharing too much.
The following dashboard shows sharing trends since , when the solution was implemented. At Microsoft, we expect employees to use good judgment and common sense—and we want them to collaborate. When creating a new site, the site owner picks the type. This applies the appropriate security settings to the site and labels it according to its classification. The levels of information are clearly defined in the user interface, as shown here.
This tells SharePoint Online users what type of information they should post. Users are expected to honor the classification and post only the type specified.
A user who shares files inappropriately automatically receives a signal that helps teach them the desired behavior. A signal can be a Policy Tip or an email message. And, if necessary, the sensitive content is blocked.
DLP includes policies for sharing regulated information that administrators can use out of the box and customize for their specific company needs and region. Information covered under these policies includes credit card and social security numbers and their international equivalents. DLP displays Policy Tips in the user interface that inform users about potential policy violations. In addition, when a user posts a file on a SharePoint site or OneDrive for Business that contains regulated information, DLP displays an icon in line with the file that indicates the file contains regulated information.
DLP also blocks other users from viewing or accessing the file unless the administrator has configured a policy override for the site. Microsoft IT has a business process for users to request this override. DLP for Office It then sends an email message letting the user know about it. The email message contains the same information as the Policy Tip.
When a user shares other types of sensitive information, such as usernames and passwords, AutoSites sends an email message asking the user to correct the issue. So, how can you access audit reports in Microsoft ? Make sure you have administrative rights to access this option.
In the Microsoft admin center, you can access activity reports for multiple items, such as Email, Mailbox usage, Active users, Office activations, and many more. Here we will discuss how you can track user emails activity in the Microsoft admin center.
0コメント