Microsoft Purview compliance portal: Insider Risk Management – Email signature exclusion

Images in email signatures are by default treated as attachments, which could make it seem like a user is sending emails with attachments many times a day, creating many false alerts in Insider Risk Management. With this update, admins can choose to exclude images in signatures automatically to reduce noisy signals. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies to manage security and compliance. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

(more…)

Microsoft Purview compliance portal: Insider Risk Management – Deduplication of signals

A single user activity could generate duplicate signals used to identify insider risks, creating noisy alerts. With this update, signals will be de-duplicated, reducing noise in alerts without losing risk context. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies to manage security and compliance. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

(more…)

Microsoft Purview compliance portal: Insider Risk Management – File type exclusion in email attachments

Admins can configure file type exclusions from Insider Risk Management policies, though by default these exclusions do not apply to email attachments. With this update, the file type exclusion will extend to email attachments to help reduce noisy signals. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies to manage security and compliance. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

(more…)

Cross-tenant synchronization (preview)

Cross-tenant synchronization lets you automate creating user accounts across tenants in your organization. Users created by the synchronization process continue to authenticate in the same way they do on their primary tenant and each application can assign conditional access policies as appropriate. So now, users across your organization can access applications regardless of the tenant where they are hosted, including Microsoft applications like Teams and SharePoint, as well as non-Microsoft applications like ServiceNow, Adobe, and hundreds more SaaS apps.

Behind the scenes and transparent to the user, the sync process leverages the robust Azure AD B2B functionality and is fully integrated with Azure AD’s security and governance capabilities such as conditional access, cross-tenant access settings, and entitlement management.  

(more…)

IPv6 coming to Azure AD

With the growing adoption and support of IPv6 across enterprise networks, service providers, and devices, many customers are wondering if their users can continue to access their services and applications from IPv6 clients and IPv6 networks.

Today, we’re excited to announce our plan to bring IPv6 support to Microsoft Azure Active Directory (Azure AD). This will allow customers to reach the Azure AD services over both IPv4 and IPv6 network protocols (dual stack).

(more…)

Azure AD Tenant Creation Control

This new capability will provide admins with the ability to lock down tenant creation to decide whether they want their users to create more tenants.

The ability for users to create tenants from the Manage Tenant overview has been present in Azure AD since almost the beginning of the Azure portal. The Tenant Creation Lockdown capability (Restrict non-admin users from creating tenants) will provide admins with the ability to restrict tenant creation to decide whether they want their users to create more tenants. We have also created the Tenant Creator role, which will allow users assigned to this role to create new tenants.

(more…)

Microsoft Purview compliance portal: Information Protection and Data Loss Prevention – User scoping RBAC

Delegate management and remediation authority for different people in different regions or organization units with role-based access control (RBAC). The RBAC controls will extend to
the Microsoft 365 Defender portal for Information Protection and DLP related events.

(more…)

Microsoft Purview compliance portal: Information Protection – Maintain label and protection when creating PDF files from VBA in Word, Excel, and PowerPoint (U.S. Government clouds)

This feature is for VBA developers who use Office fixed format export functions to create PDFs from documents with sensitivity labels and encryption. By default, all PDFs created using Office’s fixed format export functions will automatically inherit the source document’s label or encryption. Some VBA add-ins may need to be updated to avoid issues when post-processing an encrypted PDF.

(more…)

Microsoft Purview compliance portal: Audit – Support for Customer Key (U.S. Government clouds)

Given the sensitivity of Audit log data, many organizations want to add additional layers of protection, including encryption. Customer Managed Key (CMK) allows Organizations to use their own keys giving them control over their encryption. With this update, admins will have the ability to encrypt their Audit log data using CMK.

(more…)

Microsoft Purview compliance portal: Data Lifecycle Management – Retention policy support for legacy Teams CDR messages

Retention policies for Microsoft Teams are being extended to include CDR messages (system-generated messages from Teams meetings). Up until now, only messages generated after October 2022 were supported for retention. This update extends coverage to messages created before October 2022, so that old and new are now supported in the same manner.

(more…)


I've been working with Microsoft Technologies over the last ten years, mainly focused on creating collaboration and productivity solutions that drive the adoption of Microsoft Modern Workplace.