Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here

Skyhigh Security

SharePoint Controls based on Privacy Settings

Limited Availability: This is a Limited Availability feature. To enable this feature, contact Skyhigh Support.

Skyhigh CASB for SharePoint provides control over sensitive content shared by users in SharePoint sites.  

Identify and Remove Sensitive Content Shared in SharePoint sites based on Privacy Settings

Skyhigh CASB for SharePoint allows security admins to define the DLP policies to monitor and remove sensitive data posted in SharePoint sites (Teams). Files uploaded to SharePoint sites are monitored and deleted.

For example, say your organization has a private SharePoint site (myorg.sharepoint.com) and the organization wants to restrict sensitive data from being uploaded to this private site. The security admin can define a DLP policy based on the privacy settings of the SharePoint site. The DLP policy is triggered when a user uploads a sensitive file to this private SharePoint site.

Rule Group

To create a DLP rule based on SharePoint site privacy settings:

  1. Go to Policy > DLP Policies
  2. Click Actions > Sanctioned Policy > Create New Policy
  3. On the Description page, enter a name, description, and deployment type. For Services, select Microsoft SharePoint. Then select the users the policy will apply to.
    clipboard_e805be28a2e79102ab2e1ede915f0991a.png
  4. On the Rules page, select SharePoint Setting.
    clipboard_ef137b223ffd0b45181b17837e24f30ff.png
  5. For Privacy Settings, select the privacy setting of the SharePoint site.
    • Private.
    • Public.
  6. Click AND and select any rule options such as Data Identifier, Keyword, or Regular Expression.
    clipboard_e688104c81c03b92c46a77c89ad99f8c9.png

Response Action

To add a response action to a policy:

  1. On the Response page, click AND, and select Quarantine to quarantine the sensitive data.
    1. Also select Send Email Notification To and enter the SharePoint User Email to notify the user about the DLP policy violation, or add a comma-separated list of email addresses. 
  2. Select an Email Template.
    clipboard_e8b01053cc77d7575ef5d5aad5ee74ba3.png 
  3. Click Next.
  4. Review your policy and click Save
  • Was this article helpful?