We need both tracking and revoking function on unified labeling client, like on classic client.
- Users can prohibit viewing when people other than target person/people view the document.
- Users can revoke the document when they mis-send it to wrong person/people.
- Users can revoke the document when they send wrong file.11 votes
Documents which are protected automatically by Cloud App Security policy should be able to be tracked and revoked in the tracking portal.7 votes
When protected content is accessed, logs about the access are stored in the AIP Analytics service for the sender's tenant. Depending on the use and lifecycle of those logs an organization might want to notify recipients of protected documents of those actions.1 vote
According to the feedback comment in the page, seems Exchange Server 2019 and Office SharePoint Server 2019 are not supported since these haven't been tested yet
These products have been launched in October 2018, should be supported as soon as possible.
Title: On-premises servers that support Azure Rights Management data protection
Url: https://docs.microsoft.com/en-us/azure/information-protection/requirements-servers8 votes
My customers request to expand “Justification to set a lower label” feature.
- When the user performs the operations, the administrator can confirm the notification list on the AIP Portal.
- When the user performs the operations, it is notified to the administrator, and the user is permitted to change the label via the administrator's admission.
This option is "Users must provide justification to set a lower classification label, remove a label, or remove protection" on the AIP portal.18 votes
I can really se the need for tracking a document without protecting it. Everyone can freely share this document but I can track who and when it is used. Could be based on a signature instead of encryption.
(Note: the original feature request was called Tracking without Encryption, but this can't be possible as without encryption anyone can open the content even without a connection, and thus tracking would yield extremely unreliable results, so we redefined it as Tracking Without Protection)38 votesAvailable in PREVIEW · AdminEnrique Saggese (Principal Program Manager, Information Protection CxE, Microsoft - Azure - Msip) responded
The All Authenticated users feature allows for tracking without protection. Of course, tracking without encryption is not possible since if it’s not encrypted no license is required for accessing the content and thus there can’t be tracking, but the feature currently in preview should meet the same need. I’m renaming the feature request to reflect this reality.
Microsoft has released the ability to track consumption of OME-formatted emails but this only works for recipients that view the emails in the OME console, which is only applicable to some scenarios (e.g. B2C emails).
For B2B scenarios, the ability to track emails consumed in Outlook or other clients (e.g. OWA, mobile or third party) is essential. This requires changing how email is consumed in some of these cases, since for example emails are licensed during delivery and not consumption in many scenarios (e.g. Mobile Outlook).3 votes
When a document is shared and revoked on same day, the same date appear on document tracking portal. and hence it makes difficult to analyze for how long (in hours) the document was shared and exposed to external world. and to get this information for auditing, admin must use powershell which is a time consuming way of doing it.
Please add timestamp in front of Revoked and Shared date field on tracking portal as shown in attached image.8 votes
In this moment mail notification has to be setup by final user on per document basis. But would be great that you can include this as an option on AIP Labels, so this configuration could be extend to all documents with out user intervention. Also would be great to include admin notification for unauthorized access.2 votes
It could be great knowing who changes a label to correct this or who violates the internal classification policy.80 votesWe're working on it! · AdminEnrique Saggese (Principal Program Manager, Information Protection CxE, Microsoft - Azure - Msip) responded
Reporting of label changes is being built in the Windows Defender ATP client. Preview coming soon.
Azure Information Protection will be able to apply the same tracking and revoke features on email that today are available for documents.73 votesAvailable in PREVIEW · AdminEnrique Saggese (Principal Program Manager, Information Protection CxE, Microsoft - Azure - Msip) responded
Revocation of protected emails formatted with OME is now in preview.
Please note that email tracking functionality is not yet included in this preview.
Update the text when revoking a document to use the number of days set by the Set-AadrmMaxUseLicenseValidityTime
Update the text when revoking a document to use the number of days set by the Set-AadrmMaxUseLicenseValidityTime cmdlet9 votes
Provide the ability to revoke individual users on shared documents59 votes
As we sometimes see the need for revoking access to a content, but not necessarily tracking of it (due to privacy reasons), it would be great if these two functionalities are not bundled but can be enabled separately. The workaround to enable the "do not track" company wide, and hence use the revocation could work, but still the button label "Track and Revoke" may mislead the users.13 votes
Administrator want to watch the E-mail of document track notify.
- They want to set sending the E-mail against all documents in a lump.
- They want to set receiving the E-mail against Administrator(or specific user).
Enable all documents of a specific classification to be tracked by default and show in the doc tracking portal35 votes
We need to serch Document Tracking logs(or Get-AadrmUserLog) sometimes.
Threfore, We want you to improve search feature.
For example, Duration, User, Action, Document...5 votes
Allow users to specify delegates to operate On Behalf of for tracking and delegation11 votes
Provide option to prevent admins from viewing user details in tracking portal similar to view used by users (i.e. Do not track list).
The goal is to allow document tracking to be turned on for users in locations where Data Privacy has approved the use of document tracking while also being able to disable tracking of user data in locations where Data Privacy approval is still pending. This will allow customers to take advantage of document tracking in locations where Data Privacy has approved its use.2 votes
When viewing tracking details include a field for data classification assigned to the content when it is opened
During investigations it would be useful to understand if a document was classified for public use, internal use, etc.1 vote
- Don't see your idea?