Sensitivity Labels Control External Sharing for SharePoint Online Sites

The container management settings of sensitivity labels can now manage the external sharing capability of SharePoint Online team sites. The same settings as available in the SharePoint admin center or PowerShell can be applied through a label. Caching means that new settings in a label might not be picked up by SharePoint Online for up to 24 hours.

Reading PDFs Protected by Sensitivity Labels with the Edge Browser

The latest version of the Edge Chromium browser can read files protected by Office 365 sensitivity labels stored in SharePoint Online and Exchange Online. This might not be the feature that causes you to dump Chrome, but it’s very useful when your tenant uses sensitivity labels.

Power BI Support for Sensitivity Labels Now Generally Available

Power BI support for Office 365 sensitivity labels is now generally available. Inside Power BI, the labels are visual markers. Encryption is applied when Power BI objects are exported. The interesting thing is that the user who exports content doesn’t have the right to change the label.

How to Find Guests in Microsoft 365 Groups and Teams Where Guests are Prohibited

You can apply an Office 365 Sensitivity Label to control different aspects of Groups, Teams, and Sites. One of the settings controls whether guest users are allowed in group membership. We explain how to use PowerShell to search groups assigned a label to block guest access for existing guests, just in case you want to remove them.

Auto-Label Policies in SharePoint Online and OneDrive for Business (Preview)

A recent Teams Live Event hosted by Microsoft’s Information Protection team discussed the automatic assignment of sensitivity labels to SharePoint Online and OneDrive for Business content. A preview is now available and Microsoft hopes to make this functionality available at the end of March 2020. You’ll need Office 365 E5 or Microsoft 365 E5 licenses.

SharePoint Library IRM Protection and Office 365 Sensitivity Labels

Now that SharePoint Online supports Office 365 Sensitivity Labels, it’s time to consider how to protect files stored in document libraries. When you compare the two approaches, there’s really only one winner. And there’s no surprise in saying that the winner is Office 365 Sensitivity Labels.

Going to Vegas for The SharePoint Conference 2020

The SharePoint Conference 2020 takes place in Las Vegas on 19-21 May 2020. SharePoint is very important to Office 365 and it’s important that tenant administrators understand SharePoint. Tony is going to Vegas to learn and to deliver sessions about Teams and Office 365 Sensitivity Labels. And avoid gambling, vice, and other bad things.

Microsoft Tries to Deprecate Classic Azure Information Protection Client

Microsoft retracted the announcement of the deprecation of the classic Azure Information Protection client and label management in the Azure portal. Office 365 sensitivity labels have taken over from AIP clients in most tenants, so the impact of this change is limited. However, if you still need to use an AIP client, you should move to the unified version.

Blocking Outbound Messages Stamped with Microsoft 365 Sensitivity Labels

Exchange Online transport rules can block outbound email stamped with selected Office 365 Sensitivity Labels to make sure that confidential material doesn’t leave organizations. The transport rule is very easy to construct with the only complication being the need to discover the GUID of the sensitivity label you want to block. Fortunately, PowerShell gives us an easy way to find a label’s GUID.

OWA Supports Automatic Labeling for Microsoft 365 Sensitivity Labels

OWA now supports the automatic labeling of outbound messages with Office 365 Sensitivity Labels. The new feature uses Office 365 sensitive data types to detect content in messages that should be protected, and once detected, the message is stamped with a label before it passes through the Exchange Online transport service.

SharePoint Online Gains New Office 365 Compliance Features

At the Microsoft Ignite 2019 conference, Microsoft described how SharePoint Online will use Office 365 compliance features such as sensitivity labels and information barrier policies to better protect information stored in SharePoint sites. The Office Online apps also gain support for sensitivity labels. The new features will enter a mixture of public and private previews starting November 20.

Office 365 Groups to Support Sensitivity Labels

At the Ignite 2019 conference in Orlando, Microsoft announced that Office 365 Groups will soon support sensitivity labels, but only to mark group containers with levels of sensitivity. The actual content of the containers, like the messages in Outlook Groups or Teams, will remain unaffected by the labels. For now.

Outlook Mobile Adds Support for Sensitivity Labels

Outlook for iOS and Android now support marking and encryption of email with Office 365 Sensitivity Labels. Sensitivity labels can now be applied through Office ProPlus, OWA, and Outlook mobile. All that really remains to achieve full coverage for sensitivity labels across Office 365 are the Office Online and SharePoint/OneDrive browser interfaces. In other news, Outlook Mobile also supports S/MIME.

OWA Embraces Office 365 Sensitivity Labels

OWA now supports Office 365 Sensitivity Labels, which means that users can apply labels to mark and/or protect messages with encryption just like they can with Outlook. The update adds to the ways that sensitivity labels can be applied to Office 365 content, with the next step being to achieve the same support for the other online Office apps.

Don’t Delete Office 365 Sensitivity Labels

The process of introducing Office 365 sensitivity labels to a tenant can be long and complicated because of the need to plan how to manage encrypted content. As you go through the process, don’t delete labels if they’ve already been used to protect content. Instead, remove them from the label policies used to publish information to clients. The labels will then remain intact in documents and other files.