Please clarify where to find the "check the Content inspection option" about cloudappsecuritydocs HOT 5 CLOSED

@blouwagie , Thanks so much for reaching out. You're right, they changed the page. I'll update the documentation to reflect the new language and options. thanks!

from cloudappsecuritydocs.

#please-close @msmbaldwin

from cloudappsecuritydocs.

Hi @rkarlin
Thank you for responding. In the meantime I worked with Microsoft Escalation on this.

After talking with an escalation engineer who had said that that to test ALL files we could use for "inspection method" > Built-in DLP > Check "Include all files that match a preset expression". Doing that resulted in zero (0) files being found.

So I then resorted to using the following workaround to apply inspection to all files: "inspection method" > Built-in DLP > chekc "include files that match a custom expression" and in the search box type [a-z0-9]{1,9} and chose the option "Match a regular expression" . This option worked.

As long as the system does not provide an option to check all files in a location, it would be really helpful to have the workaround I found documented. I believe that the option to scan ALL files in a location is essential for compliance for many of the AIP users.

Regards
Bart

from cloudappsecuritydocs.

Hi @blouwagie , If we understand correctly, you seem to be trying to select which files the policy runs on in the content inspection field. That field only sets what type of inspection to use. To set which files the policy runs on, as it says in the document, delete all the preset filters in the filter scope - did you want me to write "delete all the preset filters under Files matching all the following" is that the part that you found confusing?

from cloudappsecuritydocs.

Hi @rkarlin , that is an interesting solution that neither Microsoft Support (two engineers, including escalation engineer) managed to conclude from the document. This is not about the filtering. I read the note again and copy the part that does not work as described. This is the section: "Then, under Content inspection, click Include files that match a preset expression and select any predefined value, and save the policy. This enables content inspection, which automatically detects Azure Information Protection classification labels."
The "select any predefined value" is not something that works, or we (including support) have no idea how to do that. In the end it is in the content inspection area that we had to chose: Regular Expression and then build a regular expression to have one that would match any piece of text or number.
So no it is not about removing all the filters higher up on that page, it is about the need to do content inspection and making that content inspection match all files, aka any content.
Hopefully that helps
bart

from cloudappsecuritydocs.