check before: 2025-12-05
Product:
Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention, SharePoint
Platform:
Online, US Instances, Web, World tenant
Status:
Launched
Change type:
New feature, Admin impact
Links:
(526797)
Details:
Summary:
Microsoft Purview Data Loss Prevention will support assigning SharePoint Online sites to administrative units, allowing DLP policies to apply only within those units. This feature, rolling out mid to late December 2025, requires no action before rollout and enables more granular policy management for admins.
Details:
[Introduction]
We're adding support for assigning Microsoft SharePoint Online sites to existing administrative units in Microsoft Purview Data Loss Prevention (DLP). When you assign a DLP policy for SharePoint to an administrative unit, the policy will apply only to sites within that unit. This enhancement helps organizations manage policies more granularly and align with administrative boundaries.
Learn more about Admin units: Administrative units in Microsoft Purview portal | Microsoft Learn
This message is associated with Microsoft 365 Roadmap ID 526797.
[When this will happen:]
General Availability (GCC, GCC High, DoD): Rollout begins mid-December 2025 and is expected to complete by late December 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability
Created:
2025-12-05
updated:
2025-12-05
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is introducing a feature for SharePoint Online that allows Data Loss Prevention (DLP) policies to be precisely managed by assigning SharePoint sites to specific administrative units, enabling tailored security protocols for each unit, with automatic availability by December 2025.
Direct effects for Operations**
Granular Policy Management
The introduction of administrative units for DLP policies may lead to confusion among admins if they are not prepared for the new structure, potentially resulting in misconfigured policies that could either over-restrict or under-restrict data access.
- roles: DLP Admins, IT Security Managers
- references: https://learn.microsoft.com/purview/dlp-policy-reference?branch=main#support-for-adding-sharepoint-sites-to-administrative-units, https://learn.microsoft.com/purview/purview-admin-units
User Experience
If DLP policies are not configured correctly post-rollout, end-users may experience unexpected restrictions or access issues to SharePoint sites, impacting their ability to perform daily tasks effectively.
- roles: End Users, SharePoint Site Owners
- references: https://learn.microsoft.com/purview/dlp-policy-reference?branch=main#support-for-adding-sharepoint-sites-to-administrative-units, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=526797
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 3 weeks ago ago
