Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Microsoft Information Protection Administrator SC-400 Certification Guide

You're reading from   Microsoft Information Protection Administrator SC-400 Certification Guide Advance your Microsoft Security & Compliance services knowledge and pass the SC-400 exam with confidence

Arrow left icon
Product type Paperback
Published in Feb 2022
Publisher Packt
ISBN-13 9781801811491
Length 326 pages
Edition 1st Edition
Arrow right icon
Authors (2):
Arrow left icon
Shabaz Darr Shabaz Darr
Author Profile Icon Shabaz Darr
Shabaz Darr
Viktor Hedberg Viktor Hedberg
Author Profile Icon Viktor Hedberg
Viktor Hedberg
Arrow right icon
View More author details
Toc

Table of Contents (19) Chapters Close

Preface 1. Section 1: Exam Overview and Introduction to Information Protection
2. Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives FREE CHAPTER 3. Chapter 2: Introduction to Information Protection 4. Section 2: Implementing Information Protection
5. Chapter 3: Creating and Managing Sensitive Information Types 6. Chapter 4: Creating and Managing Trainable Classifiers 7. Chapter 5: Implementing and Managing Sensitivity Labels 8. Chapter 6: Planning and Implementing Encryption for Email Messages 9. Section 3: Implementing Data Loss Prevention
10. Chapter 7: Creating and Configuring Data Loss Prevention Policies 11. Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention 12. Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities 13. Section 4: Implementing Information Governance
14. Chapter 10: Configuring Retention Policies and Labels 15. Chapter 11: Managing Data Retention in Microsoft 365 16. Chapter 12: Implementing Microsoft Purview Records Management 17. Practice Exam 18. Other Books You May Enjoy

Reviewing and analyzing DLP reports

With both the DLP Policy Matches report and the DLP Incidents report page, there is a chart and a table you will be able to view that display information based on their corresponding events.

When analyzing both these reports, you have the ability to break down the charts and separate them by either of the following:

  • Affected service
  • Enforced action
  • Applied policy

You will need to familiarize yourself with the existing filters of DLP that will aid you in fine-tuning the policies and limit the false positives and overrides.

Reviewing DLP policy matches

When you are utilizing DLP policy match reports, it is recommended to use filters to reduce the report to particular policies. This will aid in lowering the number of matches that are viewable and concentrate on the effect of the specific policies in your tenant.

Imagine a scenario in which you created a new policy to protect financial content a week ago and it is...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image