Allow Office DLP rule exception for encrypted outbound emails
DLP rules do not allow an exception of the predicate "MessageTypeMatches" with the notify sender action. Doing so results in the error:
One of the conditions you specified can't be used for rules where you want to notify the sender. Error details: The NotifySender action isn't compatible with 'MessageTypeMatches' predicate.
I would like to trigger a rule on outbound matches unless the message is encrypted in order to enforce our internal policy compliance.
A major dropped ball in my opinion. Should be very simple - setup a rule to check for sensitive data. If the rule is triggered, stop the e-mail UNLESS the message is already encrypted, then let the message go free. Please get this changed right away MS!!
Zeff Wheelock commented
I have an email transport rule. Apply This Rule If... The Recipient is located outside of the organization AND The message contains any of these sensitive information types... U.S. Social Security Number (SSN). Do the following: Encrypt the messages with the previous version of OME AND Notify the Sender with a policy tip: Notify the sender, but allow them to send. I am trying to add an exception Except If The Subject includes encrypt (or even message header Subjects includes encrypt). I get an error One of the conditions you specified can't be used for rules where you want to notify the sender. Error Details: The NotifySender action isn't compatible with 'Subject Contains' predicate. We want to notify our users when they do not secure an email correctly.
YES this is a huge need!
Yes I agree. I would like to send an educational email back to the user (and not deliver the message) if DLP match EXCEPT if they encrypted the message
Yes this enhancement is crucial for the business process. Has there been any advancement in this area?
Yes, I agree. The emails the DLP rules under Security and Compliance are much better than the email bounces you receive when you setup DLP policies in Exchange. However, since you cannot setup keyword exceptions on the Security and Compliance section of Office 365, I agree this would be a great feature update.