Allow Code42 access to Microsoft Office 365 DLP email
...
You can set up data loss prevention policies in the Microsoft Office 365 Security & Compliance Center that identify when a user emails an attachment that matches those rules. When you add
Microsoft Office 365 DLP as a email serviceOffice365(click for details)
, information about those attachments becomes available in Callstack:
at (Article_Update_Log/2021-07-01/Allow_Code42_access_to_Microsoft_Office_365_DLP_email), /content/body/span[1], line 1, column 10
(click for details)
for investigation.
Callstack:
at (Article_Update_Log/2021-07-01/Allow_Code42_access_to_Microsoft_Office_365_DLP_email), /content/body/span[2], line 1, column 10
This article explains how to add
Microsoft Office 365 DLPOffice365 email as a data connection....
The following considerations apply to
the Microsoft Office 365 DLP connectionOffice365...
Before adding
Microsoft Office 365 DLPOffice365...
Connect to Microsoft Office 365 DLPOffice365 email
...
The next time that an attachment is emailed that is detected by a data loss prevention policy in the Microsoft Office 365 Security & Compliance Center, information about that file is recorded as an event by
(click for details)
. For details, see AttachmentCallstack:
at (Article_Update_Log/2021-07-01/Allow_Code42_access_to_Microsoft_Office_365_DLP_email), /content/body/div[1]/p[2]/span, line 1, column 10
...
Now that you have added
Microsoft Office 365 DLPOffice365...
AttachmentOffice 365 attachment metadata
...
RequiredOffice 365 email permissions
...
Other changes:
- /body/ul[2]/li/a/@href:
- /body/ul[2]/li/a/@title: nothing ⇒ "Enable endpoint monitoring and file metadata collection"
- /body/ol[2]/li[8]/a/@href:
- /body/ol[2]/li[8]/a/@title:
- /body/p[8]/a/@href:
- /body/p[8]/a/@title:
- /body/ul[7]/li[3]/p[2]/a[3]/@href:
- /body/div[5]/@data-section: