管理策略提示Manage policy tips

策略提示为信息性通知,将在电子邮件发件人编写邮件时对其显示。策略提示的用途是告知用户他们可能违反了您按照您已确立的数据丢失防护 (DLP) 策略强制实施的业务实践或策略。下面的过程将帮助您开始使用策略提示。请观看此视频了解更多内容。Policy Tips are informative notices that are displayed to email senders while they're composing a message. The purpose of the Policy Tip is to educate users that they might be violating the business practices or policies that you are enforcing with the data loss prevention (DLP) policies that you have established. The following procedures will help you begin using Policy Tips. Watch this video to learn more.

在开始之前,您需要知道什么?What do you need to know before you begin?

  • 估计完成每个步骤时间:30 分钟Estimated time to complete each procedure: 30 minutes

  • 您必须先获得权限,然后才能执行此过程或多个过程。若要查看所需的权限,请参阅 邮件策略和遵从性权限主题中的"数据丢失防护 (DLP)"条目。You need to be assigned permissions before you can perform this procedure or procedures. To see what permissions you need, see the "Data loss prevention (DLP)" entry in the Messaging policy and compliance permissions topic.

  • 仅当满足了以下条件时,才会对电子邮件发件人显示策略提示:Policy Tips will only show up for email senders when the following conditions are met:

  1. 发件人的邮件客户端程序为 Microsoft Outlook 2013。如果您的组织已部署 Exchange 2013 SP1 或正在使用 Exchange Online,则 Outlook Web App 和 适用于设备的 OWA 中也会显示策略提示。Sender's message client program is Microsoft Outlook 2013. If your organization has deployed Exchange 2013 SP1 or is using Exchange Online, Policy Tips also show up in Outlook Web App and OWA for Devices.

  2. 传输规则存在调用策略提示通知。可以通过配置包括通知发件人使用策略提示的操作的 DLP 策略创建传输规则。A transport rule exists that invokes Policy Tip notifications. You can create such a transport rule by configuring a DLP policy that includes the action Notify the sender with a Policy Tip.

  3. 您的传输代理扫描的邮件头、邮件正文或邮件附件的内容符合在也包含策略提示通知规则的 DLP 策略中规定的条件。换句话说,仅当最终用户进行导致关联规则采取操作的行为时,才会显示策略提示。The content of a message header, message body, or message attachment that is scanned by your transport agent meets the conditions established within the DLP policies or rules that also include Policy Tip notification rules. Put another way, the Policy Tip only shows up for end-users if they do something that causes the associated rule to take action.

  • 如果您没有使用策略提示设置功能来自定义您的策略提示文本,则会显示您内置于系统中的默认策略提示通知文本。有关默认文本的详细信息,请参阅 策略提示The default Policy Tip notification text that is built into the system will be shown if you don't use the Policy Tip settings feature to customize your Policy Tip text. To learn more about the default text, see Policy Tips.

  • 若要了解可能适用于此主题中过程的键盘快捷键,请参阅 Exchange 管理中心内的键盘快捷键For information about keyboard shortcuts that may apply to the procedures in this topic, see Keyboard shortcuts in the Exchange admin center.

提示

遇到问题了吗?请在 Exchange 论坛中寻求帮助。 请访问以下论坛:Exchange ServerExchange OnlineExchange Online ProtectionHaving problems? Ask for help in the Exchange forums. Visit the forums at Exchange Server,Exchange Online, or Exchange Online Protection.

您想执行什么操作?What do you want to do?

创建或修改仅进行通知的策略提示Create or modify a notify-only Policy Tip

信息性策略提示满足特定规则的条件时要显示的电子邮件发件人导致此过程。在 Microsoft Outlook 中发件人可以防止此提示使用策略提示的选项对话框显示。若要配置自定义策略提示的文本,请参阅本文后面的创建自定义策略提示通知文本This procedure results in an informational Policy Tip being shown to an email sender when the conditions of a specific rule are met. In Microsoft Outlook, the sender can prevent this tip from showing up by using a Policy Tip options dialog box. To configure custom Policy Tip text, see Create custom Policy Tip notification text later in this article.

使用 EAC 配置只进行通知的策略提示Use the EAC to configure notify-only Policy Tips

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 双击某个策略,显示在列表中的策略或者突出显示一个项目并选择编辑编辑图标Double-click one of the policies that appear in your list of policies or highlight one item and select EditEdit icon.

  3. 编辑 DLP 策略页中,选择规则On the Edit DLP policy page, select Rules.

  4. 要添加到现有规则的策略提示,请突出显示该规则,然后选择编辑编辑图标To add Policy Tips to an existing rule, highlight the rule and select EditEdit icon.

    若要添加可完全自定义的新空白规则,选择添加添加图标,然后选择创建新规则To add a new blank rule that you can fully customize, select AddAdd Icon and then select Create a new rule.

  5. 以下情况应用此规则,请选择邮件包含敏感信息。此条件会是必需的。In Apply this rule if, select, The message contains sensitive information. This condition is required.

  6. 选择添加图标,选择敏感信息类型,选择添加,选择确定,,然后选择确定Select Add Icon, select the sensitive information types, select Add, select OK, and then select OK.

  7. 执行以下操作框中,选择通知发件人使用策略提示,并在选择是否将阻止或可以发送邮件下拉列表中,选择一个选项然后选择确定In the Do the following box, select Notify the sender with a Policy Tip, and select an option in the Choose whether the message is blocked or can be sent drop-down list, and then select OK.

  8. 如果您想要添加其他条件或操作,在窗口的底部,选择更多选项If you want to add additional conditions or actions, at the bottom of the window, select More options.

    备注

    可使用仅以下条件: > SentTo (收件人为)> SentToScope (收件人位于)> 从 (发件人为)> frommemberof (发件人为的成员) 以下组> FromScope (发件人位于)> 不能使用以下操作: > RejectMessageReasonText (拒绝该邮件并给出说明)> RejectMessageEnhancedStatusCode (拒绝邮件增强状态代码的)> DeletedMessage (删除消息,而不通知任何人)Only the following conditions can be used: > SentTo (The recipient is)> SentToScope (The recipient is located)> From (The sender is)> FromMemberOf (The sender is a member of)> FromScope (The sender is located)> The following actions can't be used: > RejectMessageReasonText (Reject the message and include an explanation)> RejectMessageEnhancedStatusCode (Reject the message with the enhanced status code of)> DeletedMessage (Delete the message without notifying anyone)

  9. 选择此规则的模式列表中,选择是否希望强制实施规则。我们建议先测试规则。In the Choose a mode for this rule list, select whether you want the rule to be enforced. We recommend testing the rule first.

  10. 选择保存以完成规则修改并保存所做的更改。Select Save to finish modifying the rule and save your changes.

您如何知道这有效?How do you know this worked?

要验证是否成功创建了仅对发件人进行通知的策略提示,可进行以下操作:To verify that you have successfully created a Policy Tip that will only notify a sender, do the following:

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 选择希望在其中包含一封通知邮件的策略。Select the policy that you expect to contain a notification message.

  3. 选择编辑编辑图标,然后选择规则Select EditEdit icon and then select Rules.

  4. 选择希望在其中包含一封通知邮件的特定规则。Select the specific rule that you expect to contain a notification message.

  5. 确认您通知发件人的操作出现在规则摘要的下方部分。Confirm that your Notify the sender action appears in the lower portion of the rule summary.

创建或修改阻止邮件策略提示Create or modify a block-message Policy Tip

拒绝此过程导致与电子邮件发件人,指示一条消息显示策略提示,它将不会传递直到有问题的条件不再存在。发件人提供了一个选项来指示其电子邮件不包含有问题的条件。这也称为是误报替代。如果发件人指示这,然后邮件可以离开发件箱并可能需要用户的报告进行审核。但是,Exchange 将阻止发送消息。This procedure results in a Policy Tip being shown to an email sender that indicates a message is rejected and it will not be delivered until the problematic condition is no longer present. The sender is provided with an option to indicate that their email message does not contain the problematic condition. This is also known as a false-positive override. If the sender indicates this, then the message can leave the outbox and the user's report may be audited. However, Exchange will block the message from being sent.

使用 EAC 可配置阻止邮件策略提示Use the EAC to configure block-message Policy Tips

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 双击某个策略,显示在列表中的策略或者突出显示一个项目并选择编辑编辑图标Double-click one of the policies that appear in your list of policies or highlight one item and select EditEdit icon.

  3. 编辑 DLP 策略页中,选择规则On the Edit DLP policy page, select Rules.

  4. 要添加到现有规则的策略提示,请突出显示该规则,然后选择编辑编辑图标To add Policy Tips to an existing rule, highlight the rule and select EditEdit icon.

  5. 若要添加可完全自定义的新空白规则,选择添加添加图标To add a new blank rule that you can fully customize, select AddAdd Icon.

  6. 要添加可展示策略提示操作,请选择更多选项... ,然后选择添加操作按钮。To add an action that will reveal a Policy Tip, select More options… and then select the Add action button.

  7. 从下拉列表中,选择通知发件人使用策略提示,然后选择阻止邮件From the drop down list, select Notify the sender with a Policy Tip and then select Block the message.

  8. 选择确定,然后选择保存以完成规则修改并保存所做的更改。Select OK, then select Save to finish modifying the rule and save your changes.

您如何知道这有效?How do you know this worked?

要验证是否已成功创建拒绝邮件策略提示,请执行以下操作:To verify that you have successfully created a reject message Policy Tip, do the following:

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 选择一次以突出显示您希望在其中包含一封通知邮件的策略。Select one time to highlight the policy that you expect to contain a notification message.

  3. 选择编辑编辑图标,然后选择规则Select EditEdit icon and then select Rules.

  4. 选择一次以突出显示您希望在其中包含一封通知邮件的特定规则。Select one time to highlight the specific rule that you expect to contain a notification message.

  5. 确认您的通知发件人无法发送邮件的操作出现在规则摘要的下方部分。Confirm that your Notify the sender that the message can't be sent action appears in the lower portion of the rule summary.

创建或修改除非覆盖否则阻止的策略提示Create or modify a block-unless-override Policy Tip

策略提示有四个选项,可拒绝或防止邮件离开发件人的发件箱。有关这些选项的详细信息,请参阅策略提示There are four options for Policy Tips that can reject messages or prevent messages from leaving the sender's outbox. To learn more about these options, see Policy Tips.

使用 EAC 可配置除非覆盖否则阻止策略提示Use the EAC to configure block-unless override Policy Tips

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 两次选择一个策略,显示在列表中的策略或者突出显示一个项目并选择编辑编辑图标Double-select one of the policies that appear in your list of policies or highlight one item and select EditEdit icon.

  3. 编辑 DLP 策略页上,选择规则On the edit DLP policy page, select Rules.

  4. 要添加到现有规则的策略提示,请突出显示该规则,然后选择编辑编辑图标To add Policy Tips to an existing rule, highlight the rule and select EditEdit icon.

    若要添加可完全自定义的新空白规则,选择添加添加图标,然后选择更多选项...To add a new blank rule that you can fully customize, select AddAdd Icon and then select More options….

  5. 若要添加可展示策略提示操作,请选择添加操作按钮。To add the action that will reveal a Policy Tip, Select the Add action button.

  6. 从下拉列表中,选择通知使用策略提示发件人,然后选择阻止邮件,但是允许发件人覆盖并发送From the drop down list, select Notify the sender with a Policy Tip and then select Block the message, but allow the sender to override and send.

  7. 选择确定,然后选择保存以完成规则修改并保存所做的更改。Select OK, then select Save to finish modifying the rule and save your changes.

您如何知道这有效?How do you know this worked?

要验证是否已成功创建除非覆盖否则拒绝策略提示,请执行以下操作:To verify that you have successfully created a reject unless override Policy Tip, do the following:

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 选择一次以突出显示您希望在其中包含一封通知邮件的策略。Select one time to highlight the policy that you expect to contain a notification message.

  3. 选择编辑编辑图标,然后选择规则Select EditEdit icon and then select Rules.

  4. 选择一次以突出显示您希望在其中包含一封通知邮件的特定规则。Select one time to highlight the specific rule that you expect to contain a notification message.

  5. 确认您的阻止邮件,但是允许发件人覆盖并发送操作出现在规则摘要的下方部分。Confirm that your Block the message, but allow the sender to override and send action appears in the lower portion of the rule summary.

创建自定义策略提示通知文本Create custom Policy Tip notification text

该可选过程将帮助您自定义电子邮件发件人将在其电子邮件程序中看到的策略提示通知文本。如果您进行该操作,除非您还使用将导致通知出现的操作配置了 DLP 策略规则,否则您的自定义策略提示通知文本将不会出现。请记住,即使您不自定义自己的策略提示通知文本,也存在可显示出来的默认系统策略提示通知。有关默认文本的详细信息,请参阅 策略提示This optional procedure will help you to customize the Policy Tip notification text that email senders see in their email program. If you do this, your custom Policy Tip notification text will not appear unless you also configure a DLP policy rule with an action that will cause the notification to appear. Keep in mind that there are default system Policy Tip notifications that can be shown if you do not customize your Policy Tip notification text. To learn more about the default text, see Policy Tips.

使用 EAC 来创建和管理自定义策略提示通知文本Use the EAC to create and manage custom Policy Tip notification text

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 选择策略提示设置策略提示设置Select Policy Tip settingsPolicy Tip Settings.

  3. 若要添加您自己的自定义消息的新策略提示,选择添加添加图标。有关可用的操作选项的详细信息,请参阅策略提示To add a new Policy Tip with your own customized message, select AddAdd Icon. For more information about the action choices available, see Policy Tips.

    要修改现有策略提示,请突出显示提示并选择编辑编辑图标To modify an existing Policy Tip, highlight the tip and select EditEdit icon.

    要删除现有策略提示,请突出显示它,然后选择删除删除图标,然后确认您的操作。To delete an existing Policy Tip, highlight it and select DeleteDelete icon and then confirm your action.

  4. 选择保存以完成策略提示修改并保存所做的更改。Select Save to finish modifying the Policy Tip and save your changes.

  5. 选择关闭完成策略提示的管理并保存所做的更改。Select Close to finish managing your Policy Tips and save your changes.

使用命令行管理程序来创建自定义策略提示通知文本Use the Shell to create custom Policy Tip notification text

以下示例将新建英语策略提示,其将阻止发送邮件。此策略提示的文本更改为以下值:"此邮件似乎包含受限制的内容,因而将不会被传送。"The following example creates a new English-language Policy Tip that will block a message from being sent. The text of this custom Policy Tip is changed to the following value: "This message appears to contain restricted content and will not be delivered."

New-PolicyTipConfig -Name en\Reject -Value "This message appears to contain restricted content and will not be delivered."

有关 DLP cmdlet 的详细信息,请参阅 Messaging Policy and Compliance CmdletsFor more information about DLP cmdlets, see Messaging Policy and Compliance Cmdlets.

使用命令行管理程序来修改自定义策略提示通知文本Use the Shell to modify custom Policy Tip notification text

下面的示例修改现有采用英语的只进行通知的策略提示。该自定义策略提示的文本更改为"不建议在电子邮件中发送银行账户号码"。The following example modifies an existing English-language, notify-only Policy Tip. The text of this custom Policy Tip is changed to "Sending bank account numbers in email is not recommended."

Set-PolicyTipConfig en\NotifyOnly "Sending bank account numbers in email is not recommended."

有关 DLP cmdlet 的详细信息,请参阅 Messaging Policy and Compliance CmdletsFor more information about DLP cmdlets, see Messaging Policy and Compliance Cmdlets.

您如何知道这有效?How do you know this worked?

要验证是否已成功创建自定义策略提示文本,请执行以下操作:To verify that you have successfully created custom Policy Tip text, do the following:

  1. 在 EAC 中,转到合规性管理 > 数据丢失防护In the EAC, go to Compliance management > Data loss prevention.

  2. 选择策略提示设置策略提示设置Select Policy Tip settingsPolicy Tip Settings.

  3. 选择刷新刷新图标Select RefreshRefresh Icon.

  4. 确认自己的操作、区域设置和该区域设置的文本出现在列表中。Confirm that your action, locale and text for that locale appear in the list.

详细信息For more information

数据丢失防护Data loss prevention

策略提示Policy Tips

传输规则Exchange 2016Transport Rules Exchange 2016

Exchange Online 中的邮件流规则(传输规则)Mail flow rules (transport rules) in Exchange Online

Exchange 2010 MailTipsExchange 2010 MailTips