Sensitivity Labels
You can apply your classifications within Aiimi Insight Engine back to Sharepoint and OneDrive using Sensitivity Labels configured in Microsoft Purview.
This can be set up on existing SharePoint Configurations or new ones. However, sources must not be using the deprecated ACS approach, and must have the "Secondary" section which contains the Microsoft Graph information populated.
Setting Up Sensitivity labels
To make the necessary changes, select or create an appropriate SharePoint source.
Within the SharePoint source configuration, go to the Mappings Tab.
Map the Aiimi Insight Engine classification and SharePoint sensitivity labels together.
Left Column - Enter the Aiimi Insight Engine classification value.
This is the value that is populated in the chosen entity.
Right Column - Enter the GUID of the sensitivity label in Purview.
It can be difficult to find the GUID for a sensitivity label so we have added a utility to the SharePoint utilities to help.
Running the SharePoint Utility
On the server, run the InsightMaker.Source.SharePointUtilities.exe (.sh on Linux) with the following argument.
This will return your organisations configured labels, their unique GUID and a description for further clarification.
The GUID is the value to populate as the target in the mappings section described above.
Enrichment
You will need to add an enrichment step to write the information back to SharePoint. This process runs as a background task after making the API call. It can take a few minutes for the changes to show.
Add an UpdateMetadata Step to your enrichment process.
Source Field Name: Select the entity/metadata field containing the classification from the dropdown.
Target System Field Name: Enter "purview.sensitivityLabel" as the target field.
If run successfully, the appropriate sensitivity label should be applied within SharePoint.
Last updated