0
1.1.21
Zurich, Yokohama, Xanadu
Provides out-of-the-box integration to import DLP incidents from Microsoft Purview (OneDrive, SharePoint, Teams, Exchange Online) and other event types as well. This app can be used in combination with Data Loss Prevention Incident Response app to automate DLP incident remediation workflow for incidents generated by Microsoft Purview. This app also provides the ability to automatically release emails quarantined by Microsoft Purview post an approval workflow.
- Import DLP incidents created for OneDrive, SharePoint, Exchange Online, and Teams.
- Ability for DLP analysts to view matched sensitive data types, confidence score, match count, and the text snippet that violated the policy (matched text snippets are not stored in ServiceNow).
- Ability for DLP analysts to download the evidence file/email.
- Added correlation ID within the DLP incident table to map the integration ID to the DLP incidents.
Fixed :
- Release from quarantine feature not functioning when configured with a target state.
- Added support for Microsoft DLP integration with GCC, Commercial, DOD, and GCC-High environments.
- Resolved issue where Microsoft DLP integration runs containing empty data were not completing successfully.
- Improved handling of integration runs where all data in the contentURI is filtered out by profile filters, and implemented timeout handling for contentURI and “List Available Content” REST calls.
- Required plugins and products.
- Dependencies.
- Properties that need to be created or set to activate the content pack.
- Affected business rules.
- Affected script includes.
- .jar files that need to get uploaded, if applicable.