It is a challenge for companies to get an accurate image of their sensitive data in the business environment. This is even more challenging when you have thousands of employees who work remotely and do not connect to the corporate network on a regular basis. The Azure Information Protection client has a new passive auditing capability that helps you win this challenge.
In the latest GA version of the Azure Information Protection client, you can now discover your sensitive information in any document that opens in MS Office on a machine with the AIP client installed. This will allow you to do passive data discovery across all your endpoints, even if they are not connected to your corporate network when employees are working on that content. Once the Azure Information Protection client is deployed throughout your environment, you will be able to run your reports in the AIP Analytics activity pane or directly in Log Analytics to audit sensitive data that exists in unprotected documents.
What is the process of Azure Protection client? (Office.com/setup)
This process will allow you to identify the types of sensitive info that exist on endpoints so that you can create recommended conditions that help you to guide your users to classify sensitive data appropriately. You can also use this information to create automatic conditions just to protect your sensitive information. Moreover, the beauty of this AIP is that the AIP client does this without disturbing the performance of the active scanners.
Because all are aware that there may be privacy concerns with this, we have made this an opt-in capability that must be configured using an Advanced Setting in the global or a scoped policy in the AIP console. This way you can either turn it on for the full tenant and disable it for areas with privacy concerns, or you can only roll it out to your scoped policy for critical areas like Human Resources, Legal, or Engineering.
How to use Azure Information Protection Clients?
The steps to enable this are straightforward and can be found in the official documentation. Below you will get some steps that will help you to use the AIP:
- Log into the AIP Console in the Azure Portal
- In the left-hand corner of the screen, under the Classifications, click on Policies
- In the Policies corner then right-click on either the Global or a Scoped Policy, and click Advanced settings
- Click on the Advanced settings in which you will find section, under Name, type RunAuditInformationTypeDiscovery, and under Value, type ‘true’
- Finally, click ‘Save’ and ‘close’ to finish enabling this amazing feature
This will help you to secure your sensitive data with the help of Azure Information Protection client.