Please log-in to view this video. Sign up for FREE ACCESS HERE
To secure information from being sent to recipients that should not have the information you can use Azure Information Protection(AIP). This feature is part of Enterprise Mobility + Security (EMS) as an add-on to Office 365, it is also a part of the Microsoft 365 bundle.
The service is delivered with some standard labels for users to classify information in documents and emails. The policies are either global for all users or configured for specific groups of users. To be able to classify information the user needs to have the Azure Information Protection Client installed, it is an add-on to Office programs. There is also an AIP viewer for PDF-files. Emails or documents controlled by AIP can be encrypted either by an Azure Key or by the organizations own encryption key.
AIP is a good fit for organizations that need to comply with GDPR, by either allowing users to classify information on their own or do it by conditions you set up.
In the video I am showing how-to setup a label by your own that will fit the organizations need, I am also showing how these labels are published and made available for the user.
About the Author:
Ove Bristrand is working with SharePoint and Office 365 as an architect and trainer. Ove first started to work with Microsoft Cloud services in 2009, with his background from financial industry he has a keen interest for information security.
Ove is running the cloud integrator NetIntegrate from the office in Stockholm Sweden. When the company was founded back in 2004 Ove chose the slogan “Online all the time, anywhere with anything”.
Ove is working with mostly small and medium clients and as a member of IAMCP is he dedicated to work partner-to-partner, with his team assisting other Microsoft partners with SharePoint, Office 365 and Cloud Security.
hi my name is Ove Bristband from Net Integrator in Stockholm Sweden. I’m going to show you today how to set up secure information protection labels. I’m here in the azure portal connected to our demo account with the already open azure information protection panel from the platform from the portal here you can see that there are a couple of standard labels: personal public internal confidential and then there is a couple based calls threat these are for emailing I will show you that in if I open up a new email you can see that I can set personal public internal confidential and secret and in a Word document I have personal public internal and confidential these are labels that are delivered from Microsoft when you set up extra information protection on your office 365 tenant so today I’m going to show you how to add a new label first you go here click add a new label of course you need to set it a name so I will call this one the SPC 18 and write the description a demo for web and I will set a color in either I could choose from the list so let’s say we will set this as a silver label and I can of course if I want to do is to protect the documents and emails containing this label if I click protect there I can protect it within the azure cloud key if I don’t want to have the azure cloud key I can of course upload my own key and keep it very private other things that you can do is that you can set visual markings such as header or footer so on this one we will just set a document footer I turn that on and I say this and write just disclaimer from net integrate so this will be added to all of the documents and all of the emails using this label I can set the footer color and align it if it’s so let’s say we will have this a Center we don’t in this condition in this case set a watermark but you can actually set a word watermark if it’s a very secret document or a secret information that your what – one to safeguard you can have a watermark that is labeled under the text so it’s like if it’s a confidential document or something like that automatic applying this label is something that is a part because on this officer three six five ten and I have the EMS e5 license so I can actually add a condition so when I’m adding a condition I can choose from a couple of information types that are already there since I’m based in Sweden I would just enter Swede and we will see Sweden national ID and Sweden passport number minimum number of occurrences if I want to allow the users to send or send documents and emails outside of the company containing one of the occurrences of a Swedish passport number and national ID I can actually add this one to a minimum number of occurrences to two so if an email or a document contains more than one of a national ID or passport number I will this condition will kick in and will actually block the email or the document from being sent count of currencies with unique values only let’s say I set this to on and anything that you do here in the panel you need to actually save here so here at a policy tip it is recommended to label this file as ESPC 18 add notes for administrator use for internal housekeeping if I’m setting this up and my colleague want to study this up as well then won’t want to know what I have done and if I haven’t documented it ever in the perfect way just leave a note here so I will just set in demo for this guide I click Save let’s see okay the portal was a little bit slow once I’ve saved this one it’s not active I need to publish this to deploy changes to all users so I can set up at the policy and review it with my colleagues if I’m not the only one that can publish these and then when we’re ready we go to publish and publish the policy once I published a policy it will be available hopefully there it says publish policy was published successfully you will get some notes here from the from the issue portal so if I go into my word document now I can see that these are the ones that we saw before what I now need to do how to show these is to end word and restart it again and just open up a blank document and now we see we have the ESPC18 policy active here in the word document and if I go to outlook let’s open up a new email and see you can see that I’m still haven’t received the ESPC 18 yet I need to do the same thing here restart outlook and once outlook is open again we will open up a new email and you see I have now the ESP C 18 label here this is a demonstration of how to use the labels in assure information protection my name is oh very strong from that integrate in Stockholm Sweden