![]() For example:įor more information, see Deploying the Azure Information Protection scanner to automatically classify and protect files. To define file lists for scanning or exclusion, use the File types to scan setting in the content scan job. File lists apply for all data repositories by default, and can also be defined for specific repositories only. The scanner also considers any file lists explicitly defined to scan, or exclude from scanning. For more information, see File types excluded from classification and protection. The scanner automatically skips files that are excluded from classification and protection, such as executable files and system files. Determine whether files are included or excluded for scanning Determine whether files are included or excluded for scanningįor more information, see Files not labeled by the scanner. When scanning files, the AIP scanner runs through the following steps:ġ. Deploy multiple nodes by using the same cluster name and database for the Install-AIPScanner cmdlet. The unified labeling scanner supports scanner clusters with multiple nodes, enabling your organization to scale out, achieving faster scan times and broader scope.ĭeploy multiple nodes right from the start, or start with a single-node cluster and add additional nodes later on as you grow. Define a file types list to specify specific files to scan or to exclude.Run the scanner automatically to apply labels as configured.Run the scanner to discover files with sensitive information, without configuring labels that apply automatic classification.Run the scanner in discovery mode only to create reports that check to see what happens when your files are labeled.For more information, see File types supported by the Azure Information Protection unified labeling client.ĭo any of the following to configure your scans as needed: The scanner uses the Azure Information Protection client, and can classify and protect the same types of files as the client. To determine whether the files need labeling, the scanner uses the Microsoft 365 built-in data loss prevention (DLP) sensitivity information types and pattern detection, or Microsoft 365 regex patterns. To inspect your files, the scanner uses IFilters installed on the computer. The following image shows the AIP scanner architecture, where the scanner discovers files across your on-premises and SharePoint servers. If you've configured sensitivity labels to apply automatic classification, the scanner can label discovered files to apply that classification, and optionally apply or remove protection. The AIP scanner can inspect any files that Windows can index. Azure Information Protection unified labeling scanner overview To classify and protect your files, the scanner uses sensitivity labels configured in the Microsoft Purview compliance portal. SharePoint document libraries and folder for SharePoint Server 2019 through SharePoint Server 2013. UNC paths for network shares that use the SMB or NFS (Preview) protocols. ![]() The AIP scanner runs as a service on Windows Server and lets you discover, classify, and protect files on the following data stores: Use the information in this section to learn about the Azure Information Protection unified labeling scanner, and then how to successfully install, configure, run and if necessary, troubleshoot it. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |