microsoft-365-docs icon indicating copy to clipboard operation
microsoft-365-docs copied to clipboard

Published 20 hours ago verified publisher icon MicrosoftDocs

Limitations for Header Matches Patterns

Open SeanTGeoghegan opened this issue 1 year ago • 1 comments

We'd like to request updates to call out specific limitations for DLP Conditions such as "Header matches patterns". Currently there are errors that occur when you try go go outside of the bounds of the tool, but these are not documented anywhere (that I have seen).

Examples of what has been tested and found via errors:

  1. "You cannot configure a pattern that begins with a wildcard like (.*, .+, .{0,n} or .{1,n}). You must remove the wildcard from the beginning of the pattern to continue."
  2. You cannot configure a pattern than matches everything.
  3. "You cannot configure a pattern that ends with a wildcard like (.*, .+, .{0,n} or .{1,n}). You must remove the wildcard from the end of the pattern to continue."
  4. You cannot configure a pattern with groups of multiple match conditions like (.*, .+, .{0,n} or .{1,n}). Remove the group or the multiple match condition from the pattern to continue.
  5. "Patterns cannot contain multiple multi-matches of the same type in a row (e.g. ..)."
  6. You cannot configure a pattern with empty 'OR' conditions (e.g. 'a|' or '|a'). Remove the empty 'OR' conditions from the pattern to continue.
  7. "Running regular expression '{0}' takes too much CPU time. Consider using a less complex pattern."
  8. "The pattern '{0}' exceeds the maximum length of {1} characters."

These seem to also line up with the limitations of header RegEx from Exchange Transport Rules - functionality that is moving over into the DLP section of M365.

Document Details

Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

SeanTGeoghegan avatar Aug 05 '22 15:08 SeanTGeoghegan

@chrfox Please help us in resolving this issue. Thanks

yogkumgit avatar Aug 10 '22 15:08 yogkumgit