9.1 Start Purview as‐a‐code configuration ‐ Purview and Compliance - dcasota/m365-scripts GitHub Wiki
Lately, having activated the Microsoft Developer Program, and created a new tenant, the amount of management portals increased, so for Purview and Compliance.
The Compliance Portal still is labeled as Microsoft Purview, because earlier it was one portal only, but the content between purview.microsoft.com and compliance.microsoft.com is different. In Compliance Portal you can do assessments, improvement actions, etc. and Compliance Manager measures the progress in completing actions that help reduce risks around data protection and regulatory standards. The Purview Portal spans data security, governance and compliance across Microsoft365, Microsoft Azure, Microsoft Fabric and other cloud platform as well.
Microsoft Purview: https://purview.microsoft.com/
Microsoft Compliance: https://compliance.microsoft.com/
Microsoft Purview Customer Experience engineering (CxE): https://microsoft.github.io/ComplianceCxE/playbooks/AIP2MIP/CompareAIP2MIP/
(Microsoft Edge: https://learn.microsoft.com/en-us/answers/questions/1183333/microsoft-purview-extension-for-edge)
Google Chrome:
- https://chromewebstore.google.com/detail/microsoft-purview-erweite/echcggldkblhodogklpincgchnpgcdco?pli=1 https://learn.microsoft.com/en-us/purview/dlp-chrome-get-started?source=recommendations
Firefox:
Power BI:
Symantec:
Scenario: Protecting your organization’s Source Code and Product Development Files with Purview Data Loss Prevention
See https://microsoft.github.io/ComplianceCxE/playbooks/sourceCodePlaybook/
Information Protection, Insider Risk Management and Audit are redirected pages from compliance.microsoft.com.
There are quite a few management and privacy controls.
The data loss prevention modules allows predefined and custom policies in 8 areas:
- Exchange email
- Sharepoint sites
- Onedrive accounts
- Teams chat and channel messages
- Devices
- Microsoft Defender for Cloud Apps
- On-premises repositories
- Power BI
This is an attempt to make run unified labebling scanner, documented in https://learn.microsoft.com/en-us/training/modules/apply-manage-sensitivity-labels/4-configure-on-premises-labeling-for-unified-labeling-scanner .
install-module -name AIPService
import-module -name AIPService
When you create an app registration, select App registrations.
Select + New registration. Provide a meaningful name.
Select the Supported account type (or leave as default). For the first time, I have spotted this possibility of choosing any Microsoft Entra ID tenant and personal Microsoft accounts.
Set the Redirect url to: https://localhost. Select Register. Proceed with the step-by-step guide of https://learn.microsoft.com/en-us/training/modules/apply-manage-sensitivity-labels/4-configure-on-premises-labeling-for-unified-labeling-scanner.