microsoft
SCDLPComplianceRule : Exporting Advanced DLP Rules not working
Exporting and Importing of the SCDLPComplianceRules does not seem to include any advanced DLP rules. Tested various rule type.
The Rules get exported but do not have the additional advanced DLP information
A simple example of an advanced rule to CC and inbox for an external message produces this when exporting. No details of the CC mailbox and therefore no rule would get created if this was to be run against another tenant or correctly recreate if this policy was deleted.
SCDLPCompliancePolicy "SCDLPCompliancePolicy-Outsiders" { ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; Comment = "Test policy to cc an inbox for external messages."; EndpointDlpLocationException = @(); Ensure = "Present"; ExchangeLocation = "All"; ExchangeSenderMemberOf = @(); ExchangeSenderMemberOfException = @(); Mode = "TestWithNotifications"; Name = "Outsiders"; OneDriveLocationException = @(); OnPremisesScannerDlpLocationException = @(); PowerBIDlpLocationException = @(); Priority = 0; SharePointLocationException = @(); TeamsLocationException = @(); TenantId = $OrganizationName; ThirdPartyAppDlpLocationException = @(); } SCDLPComplianceRule "SCDLPComplianceRule-Sent from outsiders" { ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; BlockAccess = $False; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; Disabled = $False; DocumentIsPasswordProtected = $False; DocumentIsUnsupported = $False; Ensure = "Present"; ExceptIfDocumentIsPasswordProtected = $False; ExceptIfDocumentIsUnsupported = $False; ExceptIfHasSenderOverride = $False; ExceptIfProcessingLimitExceeded = $False; GenerateAlert = @("true"); HasSenderOverride = $False; Name = "Sent from outsiders"; Policy = "Outsiders"; ProcessingLimitExceeded = $False; RemoveRMSTemplate = $False; ReportSeverityLevel = "Low"; StopPolicyProcessing = $False; TenantId = $OrganizationName; }