AD Groups not working in DLP Policies with Azure EntraID
search cancel

AD Groups not working in DLP Policies with Azure EntraID

book

Article ID: 424397

calendar_today

Updated On:

Products

Data Loss Prevention Core Package

Issue/Introduction

AD Groups are not working in DLP Policies when you are using Azure EntraID Active Directory.

Environment

Azure EntraID

Cause

Azure is not a Hybrid environment.

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/16-1/managing-the-enforce-server/adding-a-new-product-module/working-with-microsoft-entra-id/about-the-symantec-integration-with-microsoft-entra-id-for-dlp.html

The Microsoft Entra ID support for DLP Agents is applicable for hybrid identity in Microsoft Entra ID deployment with the users and groups from on-premises Active Directory being synced to Microsoft Entra ID.

Resolution

In order to use Azure EntraID you must be using a Hybrid environment (This means you use Azure AND a local AD Server).

Powered by Wolken Software