Protecting Office 365 Documents with Conditional Access Policies

Azure Conditional Access policies can be used with Azure Information Protection (AIP) to secure protected documents against unauthorized access. If you have already decided to use AIP as part of your Office 365 data protection strategy, adding a conditional access policy is a quick way to frustrate people who try to access documents when they shouldn't.

Last Update: Jun 15, 2022


Support for Office 365 Sensitivity Labels Now in Office ProPlus for Windows

The September update of the Office ProPlus monthly channel delivers support for Office 365 sensitivity labels without the need to install the Azure Information Protection client. This is a step forward to make it easier for Office 365 users to be able to protect their most confidential information with encryption. More work remains to be done to upgrade the Office Online apps (including OWA), Outlook Mobile, and SharePoint and OneDrive. Will all this happen before Ignite?

View Article

Office Apps to Get Native Support for Office 365 Sensitivity Labels

Microsoft says that the Office desktop Windows apps will have native support for Office 365 sensitivity labels in the second half of 2019. Native support means that users won’t need to install the Azure Information Protection (AIP) client to apply labels. However, if they want to continue using the AIP client (because it is more functional), they need to deploy a system registry update.

View Article

Using Office 365 Sensitivity Labels

Sensitivity labels allow Office 365 tenants to encrypt messages and documents very easily. That is, as long as you have applications that understand labels. A preview version of the AIP client integrates a Sensitivity button in the Office desktop applications, but we must wait for native integration across desktop, web, and mobile clients.

View Article

Unifying Office 365 Sensitivity Labels with Azure Information Protection

The new sensitivity labels available in Office 365 bring marking and protection functionality for Exchange and SharePoint that was previously only available with Azure Information Protection. In this article, we consider how to migrate AIP labels to Office 365 so that users can encrypt their way to happiness.

View Article

Dealing with Protected Documents Found by Office 365 Content Searches

Office 365 content searches can find all sorts of information, but they cannot decrypt protected files in SharePoint and OneDrive for Business sites. This prompts the question of how to deal with protected files exported by a search. As it turns out, the combination of a rights management superuser and some PowerShell makes short work of unprotecting files so that they can be read by all.

View Article

Consumers Gain from Enterprise-Class Office 365 Features (premium) now boasts two new protected email features taken directly from Exchange Online. It’s an example of how the shared Office 365 infrastructure enables Microsoft to make functionality available to users of its consumer and enterprise platforms as they want. OneDrive Restore is another example. In both cases, the features aren’t available to free seats.

View Article

Tony’s Random Office 365 Updates

Anyone running an Office 365 tenant knows that it’s hard to keep up with everything that changes. Imagine what it must be like to write about Office 365! To clear my list of things that I want to mention but haven’t had the chance to, here’s some short snippets that you might or might not have heard about.

View Article

Easier Than Ever to Protect Email with Office 365

Office 365 has given its rights management capabilities a complete refresh. Clients deal with protected email better and it’s easy to send protected email to people inside and outside your organization, including coverage of consumer email systems like Gmail and And protected email works on mobile devices too.

View Article