Security and Compliance

This article lists the currently supported Security and Compliance reports with all of the properties that SysKit Trace loads.

Reports

Audit Configuration Policy

Name

Description

Workload

Workload associated with the policy.

Compliance Cases

Name

Description

Name

The 'Name' property specifies the unique name of the compliance case.

Description

The description of the case.

Status

Status for the case. Can either be 'Active', 'Closed' or 'ClosedWithError'.

Data Loss Prevention

Name

Description

Name

The 'Name' property specifies the unique name of the DLP policy.

Comment

The 'Comment' property specifies an optional comment.

Exchange Location

The 'Exchange Location' property specifies Exchange Online mailboxes to include in the DLP policy. Only the value All is supported to include all mailboxes.

Exchange Sender Member Of

Exchange members to include.

Exchange Sender Member Of Exception

Exchange members to exclude.

Mode

The 'Mode' property specifies the action and notification level of the DLP policy. Valid values are: Enable, TestWithNotifications, TestWithoutNotifications, Disable and PendingDeletion.

OneDrive Location

The 'OneDrive Location' property specifies the OneDrive for Business sites to include. The value 'All' specifies to include all sites, otherwise the value will be a URL of the site.

OneDrive Location Exception

This property specifies the OneDrive for Business sites to exclude when you use the value All for the 'OneDrive Location' parameter. The site is identified by its URL value.

Priority

Priority for the Policy.

SharePoint Location

The 'SharePoint Location' property specifies the SharePoint Online sites to include. The value 'All' specifies to include all sites, otherwise the value will be a URL of the site.

SharePoint Location Exception

This property specifies the SharePoint Online sites to exclude when you use the value All for the 'SharePoint Location' parameter. The site is identified by its URL value.

Teams Location

Teams locations to include.

Teams Location Exception

Teams locations to exclude.

Device Conditional Access Policy

Name

Description

Name

The name of the Device Conditional Access Policy.

Comment

The 'Comment' property specifies an optional comment.

Enabled

The 'Enabled' property specifies whether the policy is enabled.

Device Configuration Policy

Name

Description

Name

The name of the Device Configuration Policy.

Comment

The 'Comment' property specifies an optional comment.

Enabled

The 'Enabled' property specifies whether the policy is enabled.

Retention

Name

Description

Name

The 'Name' property specifies the unique name of the retention policy.

Comment

The 'Comment' property specifies an optional comment.

Dynamic Scope Location

Location of the dynamic scope for this policy.

Enabled

Determines if the policy is enabled or not.

Exchange Location

The 'Exchange Location' property specifies the mailboxes to include.

Exchange Location Exception

This property specifies the mailboxes to remove from the list of excluded mailboxes when the 'Exchange Location' parameter is set to 'All'.

Modern Group Location

The 'Modern Group Location' property specifies the Office 365 groups to include in the policy.

Modern Group Location Exception

The 'Modern Group Location Exception' property specifies the Office 365 groups to exclude when the 'Modern Group Location' parameter is set to 'All'.

OneDrive Location

The 'OneDrive Location' property specifies the OneDrive for Business sites to include. The value 'All' specifies to include all sites, otherwise the value will be a URL of the site.

OneDrive Location Exception

This property specifies the OneDrive for Business sites to exclude when you use the value All for the 'OneDrive Location' parameter. The site is identified by its URL value.

Public Folder Location

The 'Public Folder Location' property specifies that you want to include all public folders in the retention policy.

Restrictive Retention

The 'Restrictive Retention' property specifies whether Preservation Lock is enabled for the policy.

SharePoint Location

The 'SharePoint Location' property specifies the SharePoint Online sites to include. You identify the site by its URL value, or you can use the value All to include all sites.

SharePoint Location Exception

This property specifies the SharePoint Online sites to exclude when you use the value All for the 'SharePoint Location' parameter. The site is identified by its URL value.

Skype Location

The 'Skype Location' property specifies the Skype for Business Online users to include in the policy.

Skype Location Exception

This property is reserved for internal Microsoft use.

Teams Channel Location

The 'Teams Channel Location' property specifies the Teams Channel to include in the policy.

Teams Channel Location Exception

This property specifies the Teams to exclude when 'Teams Channel Location' property is set to 'All'.

Teams Chat Location

The 'Teams Chat Location' property specifies the Teams Chat to include in the policy.

Teams Chat Location Exception

This property specifies the Teams users to exclude when the ' Teams Chat Location' property is set to 'All'.

Supervision Policies

Name

Description

Name

The 'Name' property specifies the unique name for the supervisory review policy. The name can't exceed 64 characters.

Comment

The 'Comment' property specifies an optional comment.

Reviewers

The 'Reviewers' property specifies the SMTP addresses of the reviewers for the supervisory review policy. Multiple email addresses are separated by commas.

Compliance Cases ⯈ Case Hold Policy

Name

Description

Policy Name

The 'Policy Name' property specifies the unique name of the case hold policy.

Compliance Case

The 'Compliance Case' property specifies the eDiscovery case that is associated with the case hold policy.

Comment

The 'Comment' property specifies an optional comment.

Enabled

The 'Enabled' property specifies whether the policy is enabled or disabled.

Exchange Location

The 'Exchange Location' property specifies the mailboxes to include in the policy.

Public Folder Location

The 'Public Folder Location' property specifies all included public folders in the case hold policy.

SharePoint Location

The 'SharePoint Location' property specifies the SharePoint Online and OneDrive for Business sites to include.

Compliance Cases ⯈ Case Hold Rules

Name

Description

Policy

The 'Policy' property specifies the case hold policy that contains the rule.

Comment

The 'Comment' property specifies an optional comment.

Content Match Query

The 'Content Match Query' property specifies a content search filter. Only the content that matches the specified search query is placed on hold. This property uses a text search string or a query that's formatted by using the Keyword Query Language (KQL).

Disabled

The 'Disabled' property specifies whether the case hold rule is enabled or disabled.

Name

Description

Compliance Case

Compliance 'Compliance Case' (eDiscovery) that this Search is associated with.

Search Name

The 'Search Name' property specifies the unique name of the complaiance tag.

Allow Not Found Exchange Locations Enabled

The 'Allow Not Found Exchange Locations Enabled' property specifies whether to include mailboxes other than regular user mailboxes in the compliance search.

Content Match Query

The 'Content Match Query' property specifies a content search filter. This property uses a text search string or a query that's formatted by using the Keyword Query Language (KQL).

Description

The 'Description' property specifies an optional description for the compliance search.

Exchange Location

The 'Exchange Location' property specifies the mailboxes to include.

Exchange Location Exclusion

This property specifies the mailboxes to exclude when the 'Exchange Location' parameter is set to 'All'.

Hold Names

The 'Hold Names' property specifies that the content locations that have been placed on hold in the specified eDiscovery case are searched.

Include User App Content

The 'Include User App Content' property specifies that the cloud-based storage location for users who don't have a regular Office 365 user account in your organization are searched. These types of users include users without an Exchange Online license who use Office applications, Office 365 guest users, and on-premises users whose identity is synchronized with your Office 365 organization.

Language

The 'Language' property specifies the language for the compliance search. Valid input for this property is a supported culture code value from the Microsoft .NET Framework CultureInfo class. For example, da-DK for Danish or ja-JP for Japanese.

Public Folder Location

The 'Public Folder Location' property specifies that you want to include all public folders in the search.

SharePoint Location

The 'SharePoint Location' property specifies the SharePoint Online sites to include.

SharePoint Location Exclusion

This property specifies the SharePoint Online sites to exclude when the 'SharePoint Location' parameter is set to 'All'. You identify the site by its URL value.

Compliance Cases ⯈ Compliance Search Action

Name

Description

Search Name

The 'Search Name' property specifies the name of the existing content search to associate with the content search action. Multiple content searches are separated by commas.

Action

The 'Action' property specifies what type of action to define. Accepted values are Export, Retention and Purge.

File Type Exclusions For Unindexed Items

The 'File Type Exclusions For Unindexed Items' specifies the file types to exclude because they can't be indexed.

Enable Deduplication

The 'Enable Deduplication' property eliminates duplication of messages when you export content search results.

Include Credential

The 'Include Credential' switch specifies whether to include the credential in the results.

Include SharePoint Document Versions

The 'Include SharePoint Document Versions' property specifies whether to export previous versions of the document when you use the Export switch.

Purge Type

The 'Purge Type' property specifies how to remove items when the action is Purge.

Retry On Error

The 'Retry On Error' switch specifies whether to retry the action on any items that failed without re-running the entire action all over again.

Action Scope

The 'Action Scope' property specifies the items to include when the action is Export.

Data Loss Prevention ⯈ Data Loss Prevention Rules

Name

Description

Policy

Name of the associated DLP Compliance Policy.

Name

Name of the Rule.

Access Scope

The 'Access Scope' property specifies a condition for the DLP rule that's based on the access scope of the content. The rule is applied to content that matches the specified access scope.

Block Access

The 'Block Access' property specifies an action for the DLP rule that blocks access to the source item when the conditions of the rule are met. True: Blocks further access to the source item that matched the rule. The owner, author, and site owner can still access the item. False: Allows access to the source item that matched the rule. This is the default value.

Block Access Scope

The 'Block Access Scope' property specifies the scope of the block access action.

Comment

The 'Comment' property specifies an optional comment.

Content Property Contains Words

The 'Content Property Contains Words' property specifies a condition for the DLP rule that's based on a property match in content. The rule is applied to content that contains the specified property.

Disabled

The 'Disabled' property specifies whether the DLP rule is disabled.

Generate Alert

The 'Generate Alert' property specifies an action for the DLP rule that notifies the specified users when the conditions of the rule are met.

Generate Incident Report

The 'Generate Incident Report' property specifies an action for the DLP rule that sends an incident report to the specified users when the conditions of the rule are met.

Incident Report Content

The 'Incident Report Content' property specifies the content to include in the report when you use the 'Generate Incident Report' parameter.

Notify Allow Override

The 'Notify Allow Override' property specifies the notification override options when the conditions of the rule are met.

Notify Email Custom Text

The 'Notify Email Custom Text' property specifies the custom text in the email notification message that's sent to recipients when the conditions of the rule are met.

Notify Policy Tip Custom Text

The 'Notify Policy Tip Custom Text' property specifies the custom text in the Policy Tip notification message that's shown to recipients when the conditions of the rule are met. The maximum length is 256 characters. HTML tags and tokens (variables) aren't supported.

Notify User

The 'Notify User' property specifies an action for the DLP rule that notifies the specified users when the conditions of the rule are met.

Report Severity Level

The 'Report Severity Level' property specifies the severity level of the incident report for content detections based on the rule.

Rule Error Action

The 'Rule Error Action' property specifies what to do if an error is encountered during the evaluation of the rule.

Labels ⯈ Retention Labels

Name

Description

Name

The 'Name' property specifies the unique name of the complaiance tag.

Comment

The 'Comment' property specifies an optional comment.

Event Type

The 'Event Type' property specifies the retention rule that's associated with the label.

Is Record Label

The 'Is Record Label' property specifies whether the label is a record label.

Notes

The 'Notes' property specifies an optional note.

Regulatory

Regulatory description.

Reviewer Email

The 'Reviewer Email' property specifies the email address of a reviewer for Delete and KeepAndDelete retention actions. Multiple email addresses are separated by commas.

Retention Duration

The 'Retention Duration' property specifies the hold duration for the retention rule. Valid values are: An integer - The hold duration in days, Unlimited - The content is held indefinitely.

Retention Action

The 'Retention Action' property specifies the action for the label. Valid values are: Delete, Keep or KeepAndDelete.

Retention Type

The 'Retention Type' property specifies whether the retention duration is calculated from the content creation date, tagged date, or last modification date. Valid values are: CreationAgeInDays, EventAgeInDays, ModificationAgeInDays, or TaggedAgeInDays.

Labels ⯈ Sensitivity Labels

Name

Description

Name

The 'Name' property specifies the unique name for the sensitivity label. The maximum length is 64 characters.

Display Name

The 'Display Name' property specifies the display name for the sensitivity label. The display name appears in the Microsoft Office and is used by Outlook users to select the appropriate sensitivity label before they send a message.

Comment

The 'Comment' property specifies an optional comment.

Parent Id

The 'Parent Id' property specifies the parent label that you want this label to be under (a sublabel).

Priority

The 'Priority' property specifies a priority value for the sensitivity label that determines the order of label processing. A lower integer value indicates a highter priority.

Tooltip

The 'Tooltip' property specifies the default tooltip and sensitivity label description that's seen by users.

Disabled

The disabled property specifies whether to enable or disable the sensitivity label.

Apply Content Marking Footer Alignment

The 'Apply Content Marking Footer Alignment' property specifies the footer alignment.

Apply Content Marking Footer Enabled

The disabled property specifies whether to enable or disable the sensitivity label.

Apply Content Marking Footer Font Color

The 'Apply Content Marking Footer Font Color' property specifies the color of the footer text. This property accepts a hexadecimal color code value in the format #xxxxxx. The default value is #000000.

Apply Content Marking Footer Font Name

The 'Apply Content Marking Footer Font Name' property specifies the font of the footer text. If the value contains spaces, enclose the value in quotation marks.

Apply Content Marking Footer Font Size

The 'Apply Content Marking Footer Font Size' property specifies the font size (in points) of the footer text.

Apply Content Marking Footer Margin

The 'Apply Content Marking Footer Margin' property specifies the size (in points) of the footer margin.

Apply Content Marking Footer Text

The 'Apply Content Marking Footer Text' property specifies the footer text. If the value contains spaces, enclose the value in quotation marks.

Apply Content Marking Header Alignment

The 'Apply Content Marking Footer Alignment' property specifies the header alignment.

Apply Content Marking Header Enabled

The 'Apply Content Marking Header Enabled' property enables or disables the Apply Content Marking Header action for the label.

Apply Content Marking Header Font Color

The 'Apply Content Marking Footer Font Color' property specifies the color of the header text. This property accepts a hexadecimal color code value in the format #xxxxxx. The default value is #000000.

Apply Content Marking Header Font Name

The 'Apply Content Marking Footer Font Name' property specifies the font of the header text. If the value contains spaces, enclose the value in quotation marks.

Apply Content Marking Header Font Size

The 'Apply Content Marking Footer Font Size' property specifies the font size (in points) of the header text.

Apply Content Marking Header Margin

The 'Apply Content Marking Footer Margin' property specifies the size (in points) of the header margin.

Apply Content Marking Header Text

The 'Apply Content Marking Footer Text' property specifies the header text. If the value contains spaces, enclose the value in quotation marks.

Apply Water Marking Enabled

The 'Apply Water Marking Enabled' property enables or disables the Apply Watermarking Header action for the label.

Apply Water Marking Font Color

The 'Apply Water Marking Font Color' property specifies the color of the watermark text. This property accepts a hexadecimal color code value in the format #xxxxxx.

Apply Water Marking Font Name

The 'Apply Water Marking Font Name' property specifies the font of the watermark text. If the value contains spaces, enclose the value in quotation marks.

Apply Water Marking Font Size

The 'Apply Water Marking Font Size' property specifies the font size (in points) of the watermark text.

Apply Water Marking Layout

The 'Apply Content Marking Footer Alignment' property specifies the header alignment.

Apply Water Marking Text

The 'Apply Water Marking Text' property specifies the watermark text. If the value contains spaces, enclose the value in quotation marks.

Encryption Aip Template Scopes

The 'Encryption Aip Template Scopes' property specifies that the label is still published and usable in the AIP classic client.

Encryption Content Expired On Date In Days Or Never

The 'Encryption Content Expired On Date In Days Or Never' property specifies when the encrypted content expires. Valid values are integer or never.

Encryption Do Not Forward

The 'Encryption Do Not Forward' property specifies whether the Do Not Forward template is applied.

Encryption Enabled

The 'Encryption Enabled' property specifies whether encryption in enabled.

Encryption Offline Access Days

The 'Encryption Offline Access Days' property specifies the number of days that offline access is allowed.

Encryption Prompt User

The 'Encryption Prompt User' property specifies whether to set the label with user defined permission in Word, Excel, and PowerPoint.

Encryption Protection Type

The 'Encryption Protection Type' property specifies the protection type for encryption.

Encryption Rights Definitions

The 'Encryption Rights Definitions' property specifies the rights users have when accessing protected. This property uses the syntax Identity1:Rights1, Rights2;Identity2:Rights3, Rights4. For example, [email protected]:VIEW, EDIT;microsoft.com:VIEW.

Encryption Rights Url

The 'Encryption Rights Url' property specifies the URL for hold your own key (HYOK) protection.

Encryption Template Id

The 'Encryption Template Id' property links an existing Azure RMS template to a new label.

Site And Group Protection Allow Access To Guest Users

The 'Site And Group Protection Allow Access To Guest Users' property enables or disables access to guest users.

Site And Group Protection Allow Email From Guest Users

The 'Site And Group Protection Allow Email From Guest Users' property enables or disables email from guest users.

Site And Group Protection Allow Full Access

The 'Site And Group Protection Allow Full Access' property enables or disables full access.

Site And Group Protection Allow Limited Access

The 'Site And Group Protection Allow Limited Access' property enables or disables limited access.

Site And Group Protection Block Access

The 'Site And Group Protection Block Access' property blocks access.

Site And Group Protection Enabled

The 'Site And Group Protection Enabled' property enables or disables the Site and Group Protection action for the labels.

Site And Group Protection Privacy

The 'Site And Group Protection Privacy' property specifies the privacy level for the label.

Labels ⯈ File Plan Descriptors ⯈ Authorities

Name

Description

Name

The 'Name' property specifies the unique name of the Authority.

Labels ⯈ File Plan Descriptors ⯈ Categories

Name

Description

Name

The 'Name' property specifies the unique name of the category.

Labels ⯈ File Plan Descriptors ⯈ Citations

Name

Description

Name

The 'Name' property specifies the unique name of the citation.

Citation Url

URL of the citation.

Citation Jurisdiction

Jurisdiction of the citation.

Labels ⯈ File Plan Descriptors ⯈ Departments

Name

Description

Name

The 'Name' property specifies the unique name of the department.

Labels ⯈ File Plan Descriptors ⯈ Reference Ids

Name

Description

Name

The 'Name' property specifies the unique name of the reference id.

Labels ⯈ File Plan Descriptors ⯈ Subcategories

Name

Description

Name

The 'Name' property specifies the unique name of the sub-category.

Category

The 'Category' property specifies the name of the parent category associated with the sub-category.

Retention ⯈ Retention Rules

Name

Description

Policy

The 'Policy' property specifies the policy to contain the rule.

Comment

The 'Comment' property specifies an optional comment.

Expiration Date Option

The 'Expiration Date Option' property specifies whether the expiration date is calculated from the content creation date or last modification date. Valid values are: CreationAgeInDays and ModificationAgeInDays.

Excluded Item Classes

The 'Excluded Item Classes' property specifies the types of messages to exclude from the rule. This property is used to exclude items from a hold policy, which excludes the specified item class from being held. Using this property won't exclude items from deletion policies. Typically, this property is used to exclude voicemail messages, IM conversations, and other Skype for Business Online content from being held by a hold policy.

Content Match Query

The 'Content Match Query' property specifies a content search filter.

Retention Compliance Action

The 'Retention Compliance Action' property specifies the retention action for the rule. Valid values are: Delete, Keep and KeepAndDelete.

Retention Duration

The 'Retention Duration' property specifies the hold duration for the retention rule. Valid values are: An integer - The hold duration in days, Unlimited - The content is held indefinitely.

Retention Duration Display Hint

The 'Retention Duration Display Hint' property specifies the units that are used to display the retention duration in the Security and Compliance Center. Valid values are: Days, Months or Years.

Supervision Policies ⯈ Supervision Rules

Name

Description

Policy

The 'Policy' property specifies the supervisory review policy that's assigned to the rule.

Sampling Rate

The 'Sampling Rate' property specifies the percentage of communications for review. A value of 100 means the reviewers need to review all detected items.

Condition

The 'Condition' property specifies the conditions and exceptions for the rule.