From the course: Microsoft Information Security Administrator Associate (SC-401) Cert Prep by Microsoft Press

Unlock this course with a free trial

Join today to access over 25,300 courses taught by industry experts.

Specify device requirements for Endpoint DLP, including extensions

Specify device requirements for Endpoint DLP, including extensions - Microsoft 365 Tutorial

From the course: Microsoft Information Security Administrator Associate (SC-401) Cert Prep by Microsoft Press

Start my 1-month free trial Buy for my team

Specify device requirements for Endpoint DLP, including extensions

Before we get into how to use Endpoint DLP, let's look at the supported devices and the setup requirements that are required, because we want to make sure that target machines meet certain prerequisites. The feature supports Windows 10 or 11, hopefully that you've upgraded to Windows 11 as Windows 10 is now out of support, and modern Mac OS versions, so Catalina 10.15 or newer. Older operating systems and mobile devices aren't covered. Next, each device needs to be managed in our environment, meaning that it should either be intra-joined or hybrid AD-joined. If a user is on a personal PC not known to our tenant, we can't enforce DLP there. Crucially, machines must be onboarded into Microsoft Defender for Endpoint or also known as Defender XDR, because Endpoint DLP builds on that sensor. This means the Defender agent is running and reporting into the Cloud. We typically roll this out via Intune or an onboarding script, which I will demo in a moment. Without this agent, the compliance…

Contents