Microsoft OLS Compliance
Wednesday 21st November 2018
Some Microsoft 365 services activate across all users at the tenant level even when you may not have licenses for all of your users. This can cause compliance issues if specific measures aren’t in place to ensure unlicensed users are not 'benefiting' from the service.
At a high level below are the measures you can put in place to ensure compliance:
- Office 365 Advanced Data Governance: IT admins can exclude users by applying auto application to only users in the proper related locations (i.e. team sites, group sites, etc.)
- Office 365 Cloud App Security: IT admins can enforce how certain apps are accessed and may limit the user groups monitored by the service using Scoped Deployment
- Office 365 Customer Lockbox: IT admins can manage Customer Lockbox approval/rejection requests
- Office 365 Customer Key: IT admins can to scope the data encryption policy to specific mailboxes with PowerShell
- Office 365 Advanced eDiscovery: IT admins can limit discovery queries to specific users or groups
- Office 365 Threat Intelligence: IT admins can turn off Safe Attachments & Safe Links for users and dashboard reports can be filtered to report only on certain users
- Office 365 Advanced Threat Protection: IT admins can turn off Safe Attachments & Safe Links for certain users
- Azure Active Directory Identity Protection: IT admins can create risk policies defining levels for password reset or allowing access
- Microsoft Cloud App Security: IT admins can enforce how certain apps are accessed and may limit the user groups monitored by the service using Scoped Deployment
For more information, speak to a Bytes Account Manager who will be happy to help. Email [email protected] or call 01372 418500.
Want to keep informed? Sign up to our Newsletter