Microsoft plans to remove the management of Exchange transport-rule based policies from the classic EAC in mid-2022. Given that Microsoft 365 DLP policies offer the same if not better functionality for Exchange Online and can process other workloads as well, it’s a good time to consider transitioning away from the older technology. Microsoft is obviously not putting any engineering effort into Exchange-based DLP, so there’s no good reason not to move over and use the technology they are investing in, The transition will take time and effort, but it will be worth it.
Data Loss Prevention (DLP) is a feature of Office 365 E3 and E5 plans. Most DLP policies focus on matching sensitive information types created by Microsoft, like credit card numbers, but it is relatively easy to create a custom sensitive information type for use in DLP policies to detect information specific to your organization. In this example, we create a sensitive information type for Azure AD passwords and explore its use in Teams DLP policies.
How to use PowerShell to disable user overrides for Office 365 data loss prevention policies when the Security & Compliance Center doesn’t work.
How to get started with implementing Office 365 data loss prevention (DLP) policies for Exchange Online, SharePoint Online, and OneDrive.