check before: 2022-09-16
Product:
Defender, Defender for Endpoint, Defender for Office 365, Microsoft 365 Defender, Microsoft 365 suite, Purview, Purview Communication Compliance, Purview compliance portal, Purview Data Loss Prevention, Purview Information Protection
Platform:
Online, Web, World tenant
Status:
Launched
Change type:
New feature, User impact
Links:
(MC387638)
93322
Details:
Currently available in public preview (MC387638), we're rolling out a new unified incident management experience for Microsoft Purview Data Loss Prevention (DLP) in the Microsoft 365 Defender portal along with native integration with Microsoft Sentinel through the Microsoft 365 Defender connector in Sentinel.
This message is associated with Microsoft 365 Roadmap ID 93322.
[When this will happen:]
Rollout will begin in mid-September and is expected to be complete by mid-October.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2022-09-03
updated:
2022-09-15
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
More Info URL
XXXXXXX ... free basic plan only
** AI generated content. This information is not reliable.
the free basic plan is required to see all details. Sign up here
change history
| Date | Property | old | new |
| 2022-09-15 | MC prepare | To import DLP alerts into Microsoft 365 Defender:
Ensure that you have turned on alerts for all your DLP policies in the Microsoft Purview compliance portal, then navigate to Microsoft 365 Defender portal and click on Incidents in the left navigation menu or go directly to Incident Queue. Click on Filters on top right and choose Service Source: Data Loss Prevention to view all incidents with DLP alerts and take desired actions to investigate or remediate alerts. To import DLP alerts into Sentinel: Follow instructions on Connect data from Microsoft 365 Defender to Microsoft Sentinel to import all incidents including DLP incidents and alerts into Sentinel. Enable CloudAppEvents event connector to pull all Office 365 audit logs into Sentinel. You can see your DLP incidents in Sentinel once the connector is setup. Learn more: Learn about data loss prevention ps://compliance.microsoft.com/datalossprevention?viewid=dlpaler ps://docs.microsoft.com/azure/sentinel/connect-microsoft-365-defender?tabs=MDE ps://docs.microsoft.com/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-world ps://purview.microsoft.com/compl ps://security.microsoft.com/ ps://security.microsoft.com/incidents-q ps://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=933 | To import DLP alerts into Microsoft 365 Defender:
Ensure that you have turned on alerts for all your DLP policies in the Microsoft Purview compliance portal, then navigate to Microsoft 365 Defender portal and click on Incidents in the left navigation menu or go directly to Incident Queue. Click on Filters on top right and choose Service Source: Data Loss Prevention to view all incidents with DLP alerts and take desired actions to investigate or remediate alerts. To import DLP alerts into Sentinel: Follow instructions on Connect data from Microsoft 365 Defender to Microsoft Sentinel to import all incidents including DLP incidents and alerts into Sentinel. Enable CloudAppEvents event connector to pull all Office 365 audit logs into Sentinel. You can see your DLP incidents in Sentinel once the connector is setup. Learn more: Learn about data loss prevention https://compliance.microsoft.com/datalossprevention?viewid=dlpalerts https://docs.microsoft.com/azure/sentinel/connect-microsoft-365-defender?tabs=MDE https://docs.microsoft.com/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-worldwide https://purview.microsoft.com/compliance https://security.microsoft.com/ https://security.microsoft.com/incidents-queue https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=93322 |
Last updated 1 year ago ago
