Microsoft Purview Information Protection: Tracking and Revocation in Compliance Portal

Originally posted by Microsoft Dec 5, 2023 Uncategorized 0 Comments

Users can access the Microsoft Purview compliance portal to check who has tried accessing their sensitivity labeled and encrypted local Office files and revoke access when needed.

This message is associated with Microsoft 365 Roadmap ID 177890

When this will happen:

Standard Release: This feature is now available in Production.

GCC: We will begin rolling out in early December and complete by mid-December 2023.

How this will affect your organization:

Within Office, end users will see Track & Revoke Access within the Sensitivity button. When end users are the owners of a local file and they click on this button, they will be taken to the Microsoft Purview compliance portal where they can see user access attempts for the local file and have the option to revoke access.

In addition, admins will be able to view the tracking logs for all users and revoke access to local Office files using PowerShell commandlets.

• Get-AipServiceDocumentLog searches for a document using the filename or the email address of the user who applied protection.

• Get-AipServiceTrackingLog uses the file’s ContentID to return tracking data.

• Set-AIPServiceDocumentRevoked uses the file’s ContentID to revoke access.
• Clear-AipServiceDocumentRevokeduses the file’s ContentID to restore the access.

What you need to do to prepare:

The Microsoft Purview Information Protection Tracking and Revocation feature will be turned on by default. To disable the feature, use the Disable-AipServiceDocumentTrackingFeature commandlet.

Main Admin

Message ID: MC695500