Microsoft 365 合规中心更新信息What's new in Microsoft 365 compliance

无论是将新解决方案添加到 Microsoft 365合规中心、根据反馈更新现有功能,还是推出最新更新的文档,Microsoft 365 都可以帮助你随时了解不断变化的合规性环境。Whether it be adding new solutions to the Microsoft 365 compliance center, updating existing features based on your feedback, or rolling out fresh and updated documentation, Microsoft 365 helps you stay on top of the ever-changing compliance landscape. 查看下面的内容,了解 Microsoft 365 合规性的新增功能。Take a look below to see what’s new in Microsoft 365 compliance today.

备注

一些合规性功能以不同的速度为客户提供推出。Some compliance features get rolled out at different speeds to our customers. 如果尚未看到功能,请尝试将自己添加到 定向发布If you aren't seeing a feature yet, try adding yourself to targeted release.

提示

有兴趣了解其他管理中心中如何工作?Interested in what's going on in other admin centers? 请查看以下文章:Check out these articles:
Microsoft 365 管理中心的新增功能What's new in the Microsoft 365 admin center
SharePoint 管理中心的新增功能What's new in the SharePoint admin center
Microsoft 365 Defender 的新增功能What's new in Microsoft 365 Defender

请访问 Microsoft 365 路线图 ,了解已启动、即将推出、正在开发、已取消或之前发布的 Microsoft 365 功能。And visit the Microsoft 365 Roadmap to learn about Microsoft 365 features that were launched, are rolling out, are in development, have been cancelled, or previously released.

2021 年 1 月January 2021

支持 Teams 中的卡片内容Support for card content in Teams

以下 Microsoft 365 合规性解决方案现在支持检测通过 Teams 消息中的应用生成的卡内容:The following Microsoft 365 compliance solutions now support the detection of card content generated through apps in Teams messages:

信息管理和记录管理Information governance and records management

用于解决 使用信息管理和记录管理以帮助履行新西兰公共记录法案的合规性义务的新评估。New assessment to address using information governance and records management to help meet compliance obligations for the New Zealand Public Records Act.

敏感度标签Sensitivity labels

  • 现在,GCC 和 GCC-H (支持敏感度标签) 。Sensitivity labels are now supported for US Government tenants (GCC and GCC-H).
  • macOS 的新 自动标记支持。New automatic labeling support for macOS.

2020 年 12 月December 2020

聚焦:内部风险解决方案的新内容Spotlight: New content for insider risk solutions

Microsoft 365 合规性内容团队努力创建"内容解决方案"文档,以提升如何一起使用合规性功能来帮助实现合规性目标。The Microsoft 365 compliance content team is hard at work creating ‘content solution’ docs to promote how compliance capabilities can be used together to help meet your compliance goals.

首先,将内部风险解决方案(通信合规性、内部风险管理、信息屏障和特权访问管理)紧密结合的内容。First up is content that ties together our insider risk solutions: communication compliance, insider risk management, information barriers, and privileged access management. 以下是您将找到的一个速览:Here’s a peek at what you’ll find:

即将推出更多内容解决方案文档!More content solution docs coming soon!

高级电子数据展示Advanced eDiscovery

改进了工作流和功能,用于高级电子数据展示案例添加保管人和非托管数据源。Improved workflow and functionality for adding custodians and non-custodial data sources to an Advanced eDiscovery case.

数据连接器Data connectors

发布了四个新的开发连接器:Redtail Speak、Salesforce Chatter、ServiceNow 和 Yieldbroker。Four new Veritas connectors released: Redtail Speak, Salesforce Chatter, ServiceNow, and Yieldbroker.

加密Encryption

介绍 租户级别的 Microsoft 365 客户密钥Introducing Customer Key for Microsoft 365 at the tenant level. 使用你提供的密钥,可以在 DEP (创建) 策略并将其分配给租户。Using keys you provide, you can create a data encryption policy (DEP) and assign it to the tenant. DEP 为以下工作负载加密租户内的数据:The DEP encrypts data across the tenant for these workloads:

  • Teams 聊天消息 (一对一聊天、群聊、会议聊天和频道对话) Teams chat messages (1:1 chats, group chats, meeting chats and channel conversations)
  • Teams 媒体消息 (图像、代码段、视频、wiki 图像) Teams media messages (images, code snippets, videos, wiki images)
  • Teams 存储中存储的 Teams 通话和会议录像Teams call and meeting recordings stored in Teams storage
  • Teams 聊天通知Teams chat notifications
  • Cortana 的 Teams 聊天建议Teams chat suggestions by Cortana
  • Teams 状态消息Teams status messages
  • Exchange Online 的用户和信号信息User and signal information for Exchange Online

记录管理Records management

记录 管理管理员角色组 现在授予所有记录管理功能(包括处置评审)的权限。The Records Management admin role group now grants permissions for all records management features, including disposition review.

敏感度标签Sensitivity labels

2020 年 11 月November 2020

只需提醒一下,我们通常以预览状态发布新功能和更新功能,以了解这些功能的使用方式,以便我们可以在发布通用功能之前进行完善和改进。Just a reminder that we often release new and updated features in a preview state to learn how they're being used so we can hone and improve them before releasing to general availability. 在预览阶段, (及) ,请务必通过打开合规性中心右下角的反馈卡告诉我们您的想法。Your feedback is critical during preview (and beyond), so be sure to let us know what you think by opening the Feedback card at the bottom right of the compliance center.

反馈

聚焦:已发布 DLP (终结点) 数据丢失防护Spotlight: Endpoint data loss prevention (DLP) released

终结点 DLP 将 DLP 的活动监视和保护功能扩展到 Windows 10 设备的敏感信息。Endpoint DLP extends the activity monitoring and protection capabilities of DLP to sensitive info on Windows 10 devices. 将设备 载入 到 Microsoft 365 合规中心后,可以设置 DLP 策略来保护这些设备的敏感信息。After devices are onboarded to the Microsoft 365 compliance center, you can set up DLP policies to protect the sensitive info on those devices.

高级电子数据展示Advanced eDiscovery

为了更加轻松地管理电子数据展示工作流中的加密内容,Microsoft 365 电子数据展示工具现在合并加密文件的解密,这些文件附加到电子邮件并在 Exchange 中发送。To make it easier to manage encrypted content in the eDiscovery workflow, Microsoft 365 eDiscovery tools now incorporate decryption of encrypted files that are attached to email messages and sent in Exchange. 此外,存储在 SharePoint 和 OneDrive 中的加密文档在高级电子数据展示中解密。Additionally, encrypted documents stored in SharePoint and OneDrive are decrypted in Advanced eDiscovery.

合规性管理器Compliance Manager

数据连接器Data connectors

预览版中新增了五个"为"的"下一版"连接器Five new Veritas connectors in preview. 新连接器包括 Reuters Dealing、Reuters FX、CellTrust、XIP、通用 MS SQL Database 数据。New connectors include Reuters Dealing, Reuters FX, CellTrust, XIP, generic MS SQL Database data.

保留标签 (处置评审) Retention labels (disposition review)

若要在处置评审期间查看项目,用户现在必须是内容资源管理器内容查看器和内容 资源管理器列表查看器角色组的成员To view items during a disposition review, users must now be members of the Content Explorer Content Viewer and Content Explorer List Viewer role groups. 尽管需要审阅项目,但完成处置评审不需要这些角色组。Although required to review items, these role groups aren’t necessary for completing the disposition review.

敏感度标签Sensitivity labels

  • (预览) SharePoint 网站的外部共享设置(Preview) External sharing settings for SharePoint sites. 创建将用于组和网站的标签时,你将看到一个选项,用于控制已应用标签的 SharePoint 网站的外部共享。When creating a label that will be used for groups and sites, you’ll see an option to control external sharing for SharePoint sites that have the label applied. 你可以指定允许任何人、新来宾和现有来宾、仅现有来宾或仅组织中用户共享。You can specify that sharing is allowed for anyone, new and existing guests, existing guests only, or just users in your organization. 应用标签后,标签设置将替换在 SharePoint 管理中心 中配置的任何外部 共享设置When the label is applied, the label settings will replace any external sharing settings configured in the SharePoint admin center.
  • 从已标记的文档中删除标签和加密Remove label and encryption from a labeled document. 若要从 SharePoint 中的已标记文档删除标签和强制执行的加密,全局管理员和 SharePoint 管理员可以运行新 Unlock-SPOSensitivityLabelEncryptedFile cmdlet。To remove both a label and the encryption it enforces from a labeled document in SharePoint, global admins and SharePoint admins can run the new Unlock-SPOSensitivityLabelEncryptedFile cmdlet. 即使管理员无权访问站点或文件,或者 Azure 权限管理服务不可用,此 cmdlet 也运行。This cmdlet runs even if the admin doesn't have access permissions to the site or file, or if the Azure Rights Management service is unavailable.

2020 年 10 月October 2020

高级电子数据展示Advanced eDiscovery

CJK 语言支持CJK language support. 高级电子数据展示现在支持双字节字符集语言,统称为 CJK 语言 (包括简体中文、繁体中文、日语和朝鲜语) 。Advanced eDiscovery now supports double-byte character set languages, collectively known as CJK languages (includes Simplified Chinese, Traditional Chinese, Japanese, and Korean). 这些可以在多个高级审阅集方案中使用。These can be used in several advanced review set scenarios.

敏感度标签Sensitivity labels

  • 标签范围Label scope. 创建敏感度标签时,你将看到定义标签范围的新选项。When creating a sensitivity label, you’ll see a new option to define the scope for the label. 此选项允许你仅为文件和电子邮件、容器(如 SharePoint (和/或 Teams) 配置标签。This option lets you configure labels just for files and emails, containers (like SharePoint sites and Teams), or both.
  • 动态内容标记Dynamic content marking. 为敏感度标签配置内容标记时,现在可以将动态变量(如 和 )用于页眉、页脚或水印 ${Item.Label} ${Item.Location} 的文本字符串中。When configuring content marking for a sensitivity label, you can now use the dynamic variables such as ${Item.Label} and ${Item.Location} in the text string for your header, footer, or watermark.

2020 年 9 月September 2020

聚焦:合规性管理器Spotlight: Compliance Manager

今年在 Ignite 上宣布,合规性分数重新成为合规性 管理器Announced at Ignite this year, Compliance Score is rebranded as Compliance Manager. 此版本完成了从服务信任门户中合规性管理器以前的主页的转换,并引入了 Microsoft 365 合规中心中的端到端合规性管理解决方案。This release completes the transition from Compliance Manager’s previous home in the Service Trust Portal, and introduces an end-to-end compliance management solution in the Microsoft 365 compliance center.

观看下面的视频,了解合规性管理器如何有助于简化组织管理合规性的情况。Watch the video below to learn how Compliance Manager can help simplify how your organization manages compliance.

高级审核Advanced Audit

  • 新的 10 年审核日志保留期有助于支持长时间运行的调查,并响应法规、法律和内部义务。New 10-year retention of audit logs helps support long running investigations and respond to regulatory, legal, and internal obligations.
  • 三个新的关键事件Three new crucial events. 以下新事件可帮助您调查可能的泄露并确定泄露范围:Send、SearchQueryInitiatedExchange 和 SearchQueryInitiatedSharePoint。The following new events can help you investigate possible breaches and determine the scope of compromise: Send, SearchQueryInitiatedExchange, and SearchQueryInitiatedSharePoint.

通信合规性Communication compliance

  • 更新了角色组Updated role groups. 通信合规性角色组现在与可用于内部风险管理解决方案的角色组结构相匹配。Communication compliance role groups now match the role group structure available for the insider risk management solution.
  • 报表仪表板Reports dashboard. 查看所有通信合规性报告的中央位置。Your central location for viewing all communication compliance reports. 报告小组件提供对通信合规性活动状态进行总体评估最常用的见解的快速视图。Report widgets provide a quick view of insights most commonly needed for an overall assessment of the status of communication compliance activities.
  • Power Automate 流Power Automate flows. 设置流程以自动执行警报和用户的任务、在用户触发警报时通知管理员等。Set up flows to automate tasks for alerts and users, notify managers when users trigger an alerts, and more.
  • "改进分类"修正操作‘Improve classification’ remediation action. 包含与可训练分类器匹配的项目的警报可能会从反馈中获益,以帮助最大程度地减少组织中误报。Alerts containing items that match trainable classifiers might benefit from feedback to help minimize false positives in your organization. 通过 "改进 分类"选项,你可以提供反馈,指示检测到的项目是否与相关通信合规性策略中配置的分类器匹配。The Improve classification option lets you provide feedback whether detected items match the classifier configured in the related communication compliance policy. 你甚至可以建议其他分类器与项目关联,以提高将来警报的匹配准确度。You can even suggest other classifiers to associate with the item to improve match accuracy for future alerts.

数据连接器Data connectors

  • 新的第三方数据连接器New third-party data connectors. 25 个新的数据连接器,包括 14 个来自都斯的连接器和 8 个来自 Telemessage 的连接器。25 new data connectors, including 14 connectors from Veritas and 8 from Telemessage.
  • 物理保护连接器Physical badging connector. 导入物理密码数据,例如员工的原始物理访问事件或由组织的密码系统生成的任何物理访问警报。Import physical badging data, such as employee’s raw physical access events or any physical access alarms generated by your organization's badging system. 示例包括建筑物、服务器会议室或数据中心的条目。Examples include entries to buildings, server rooms, or data centers. 内部风险管理解决方案可以使用物理保护数据来帮助保护组织免受组织内部恶意活动或数据盗窃的攻击。Physical badging data can be used by the insider risk management solution to help protect your organization from malicious activity or data theft inside your organization.

内部风险管理Insider risk management

  • Microsoft Teams 集成Microsoft Teams integration. 在内部风险设置中启用 Teams 集成后,你可以与 Teams 中其他利益干系人就安全共享和存储与个别案例相关的数据、跟踪和查看来自分析员和调查人员的响应活动等任务进行协调和协作。When Teams integration is turned on in insider risk settings, you can coordinate and collaborate with other stakeholders in Teams on tasks like securely sharing and storing data related to individual cases, tracking and reviewing response activities from analysts and investigators, and more.
  • Power Automate 流Power Automate flows. 设置流程以自动执行事例和用户的重要任务,例如检索要与利益干系人和其他应用共享的用户、警报和事例信息、自动执行诸如发布到事例笔记等操作。Set up flows to automate important tasks for cases and users, such as retrieving user, alert, and case info to share with stakeholders and other apps, automating actions like posting to case notes, and more.
  • 活动浏览器Activity explorer. 查看警报时可用,活动资源管理器为研究人员和分析师提供了一个全面的分析工具,可用于深入查看每个警报。Available when reviewing alerts, activity explorer provides investigators and analysts with a comprehensive analytic tool for drilling down into each alert. 快速查看检测到的风险活动的日程表,并识别并筛选与警报关联的所有风险活动。Quickly review a timeline of detected risky activity and identify and filter all risk activities associated with alerts.

保留策略和保留标签Retention policies and retention labels

  • 支持 YammerSupport for Yammer. 现在,您可以使用保留策略来保留和删除 Yammer 社区消息和私人消息。You can now use retention policies to retain and delete Yammer community messages and private messages.
  • 将标签应用于 Teams 会议录制Apply labels to Teams meetings recordings. 创建自动标记策略时,使用关键字查询编辑器来标识存储在用户的 OneDrive 帐户或 SharePoint 中的 Teams 会议录像。When creating an auto-labeling policy, use the keyword query editor to identify Teams meeting recordings that are stored in users' OneDrive accounts or in SharePoint.

记录管理Records management

支持法规记录Support for regulatory records. 将标签分类为法规记录会增大对应用标签的内容的限制,并限制标签本身的可用管理操作。Classifying a label as a regulatory record increases the restrictions placed on content to which the label is applied and limits the available management actions for the label itself. 例如,应用于内容后,任何人(甚至全局管理员)都不得删除标签。For example, after it’s applied to content, nobody, not even a global admin, can remove the label. 详细了解 允许和阻止哪些操作用于法规记录。Learn more about which actions are allowed and blocked for regulatory records.

敏感度标签Sensitivity labels

支持美国政府客户Support for US Government customers. 现在 GCC、GCC High 和 DoD 客户支持敏感度标签,仅适用于 Azure 信息保护统一标签客户端和扫描程序。Sensitivity labels are now supported for GCC, GCC High, and DoD customers, only for the Azure Information Protection unified labeling client and scanner.

可训练的分类器Trainable classifiers

新的分类和反馈功能可帮助提高准确性,并最大程度减少所有自定义分类器以及一些预先训练的分类器误报匹配。New retraining and feedback capabilities helps improve accuracy and minimize false positive matches for all custom classifiers and some pre-trained classifiers. 通过此流,你可以提供有关项目是否与特定分类器匹配的反馈、建议其他分类器与项目关联以及分类分类器以优化和提高匹配准确度。This flow lets you provide feedback on whether items match certain classifiers, suggest other classifiers to associate with items, and retrain classifiers to refine and improve match accuracy.

此新功能包含在以下功能中:This new capability is included in the following features:

备注

对于所有功能,如果你至少提供 30 个反馈回复,我们将创建该分类器经过重新检查的版本,你可以查看该分类器。For all features, if you provide at least 30 feedback responses, we'll create a retrained version of that classifier that you can review. 如果改进,可以重新发布分类器。If there's improvement, you can republish the classifier.

  • 可训练分类器Trainable classifiers. 若要提高已发布分类器的准确性,您可以提供有关检测到的项目是否与分类器匹配的反馈。To improve the accuracy of your published classifiers, you can provide feedback on whether the detected items match the classifier.
  • 通信合规性Communication compliance. 新的 改进分类 修正操作可使你提供通信合规性警报中的项目是否与通信合规性策略中配置的分类器匹配的反馈。The new Improve classification remediation action lets you provide feedback whether an item from a communication compliance alert matches the classifier configured in the communication compliance policy.
  • 内容浏览器Content explorer. 如果将保留自动标记策略设置为自动将标签应用于与可训练分类器匹配的电子邮件,可以使用内容资源管理器查看标记的项目并提供这些项目是否与分类器匹配的反馈。If you set up a retention auto-labeling policy to automatically apply labels to email messages that match trainable classifiers, you can use content explorer to review the labeled items and provide feedback whether the items match the classifier.

2020 年 8 月August 2020

聚焦:内部风险和通信合规性更新Spotlight: Insider risk and communication compliance updates

多个新增和改进的功能在本月公开预览版中可用:Several new and improved features hit public preview this month:

内部风险管理Insider risk management

  • 查看我们的六 个新策略模板Check out our six new policy templates:

    • 按优先级用户的数据泄露Data leaks by priority users
    • 解除限制的用户泄露数据Data leaks by disgruntled users
    • 常规安全策略违反General security policy violations
    • 离开用户违反安全策略Security policy violations by departing users
    • 优先级用户违反安全策略Security policy violations by priority users
    • 解除限制的用户违反安全策略Security policy violations by disgruntled users
  • Microsoft Defender for Endpoint 集成后,你可以导入和筛选 Microsoft Defender for Endpoint 警报,以用于根据新的违反安全策略模板创建的策略所检测到的活动。Integration with Microsoft Defender for Endpoint allows you to import and filter Microsoft Defender for Endpoint alerts for activities detected by policies created from the new security violation policy templates. 还有一个相关的 内部 风险设置,你可以选择根据 Microsoft Defender for Endpoint 警报会审状态将安全警报导入内部风险管理。There’s also a related insider risk setting where you can choose to import security alerts to insider risk management based on the Microsoft Defender for Endpoint alert triage status.

    备注

    若要利用适用于终结点集成的 Microsoft Defender (包括新的安全策略违反模板) ,你需要在你的组织中配置 Microsoft Defender for Endpoint。To take advantage of Microsoft Defender for Endpoint integration (including the new security policy violation templates), you'll need to have Microsoft Defender for Endpoint configured in your organization. 你还需要在 Microsoft Defender for Endpoint 中配置高级功能,为内部风险管理集成启用Microsoft Defender for Endpoint。You’ll also need to enable Microsoft Defender for Endpoint for insider risk management integration by configuring advanced features in Microsoft Defender for Endpoint.

  • 创建策略时 自定义指示器阈值Customize indicator thresholds when creating a policy.

  • 设置 优先级用户组, 以根据用户的位置、对敏感信息的访问级别或风险历史记录等因素定义组织中需要进一步检查其活动的用户。Set up priority user groups to define users in your organization whose activity requires closer inspection based on factors such as their position, level of access to sensitive information, or risk history.

  • 使用 Office 365 管理活动 API 将 内部 风险警报详细信息导出到组织可能用于管理或聚合内部风险数据的其他应用程序。Use Office 365 Management Activity APIs to export insider risk alert details to other applications your organization might use to manage or aggregate insider risk data.

  • 设置可帮助您定义和控制特定域中活动的风险级别。New domain settings help you define and control risk levels for activity in specific domains.

通信合规性Communication compliance

  • 查看 警报中的消息时,现在可以删除 Microsoft Teams 频道、一对一和群聊中的不恰当的消息。When reviewing messages in an alert, you can now remove inappropriate messages in Microsoft Teams channels, 1:1, and group chats. 已删除的消息和内容将替换为说明由于敏感内容而删除的策略提示。Removed messages and content are replaced with a policy tip that explains that it was removed due to sensitive content.
  • 这些 角色 ( 通信角色也包含在) 年 9 月发布的新通信合规性角色组中。New communication roles (these will also be included in new communication compliance role groups releasing in September).
  • 新的通信合规性设置体验,包括隐私 通知 模板的设置New communication compliance settings experience that includes settings for privacy and notice templates.
  • 新的 分类器 ,可帮助检测成人、手部和手部图像。New classifiers to help detect adult, racy, and gory images.
  • 在查看警报中的邮件时显示的新"检测到模式"通知可使你了解用户重复出现相同行为的实例。New ‘Pattern detected’ notification that appears when reviewing messages in an alert lets you know about reoccurring instances of the same behavior by a user.

敏感度标签Sensitivity labels

  • 对于美国政府(GCC、GCC-H 和 GCC-HC)租户,目前仅支持其Azure信息保护统一标签客户端和扫描仪的敏感性标签。For US Government tenants (GCC, GCC-H, and DoD), sensitivity labels are currently supported only for the Azure Information Protection unified labeling client and scanner. 更多详细信息,请参阅Azure 信息保护高级政府服务说明For more information, see Azure Information Protection Premium Government Service Description.
  • 现在, 可以使用安全&中心 PowerShell 创建和配置在标签管理中心内看到的所有设置。You can now use Security & Compliance Center PowerShell to create and configure all settings you see in your labeling admin center. 这意味着,除了将 PowerShell 用于标签管理中心中不可用的设置之外,你现在还可以完全编写敏感度标签和敏感度标签策略的创建和维护脚本。This means that, in addition to using PowerShell for settings that aren't available in the labeling admin centers, you can now fully script the creation and maintenance of sensitivity labels and sensitivity label policies.

记录管理:内容检查Records management: Content overhaul

涉及部署步骤、将内容标记为记录以及记录版本控制的新文档:New docs covering deployment steps, marking content as records, and record versioning:

保留标签&策略Retention labels & policies

现在已记录与保留相关的管理员活动,并可在审核日志。Retention-related admin activity is now recorded and available to review in the audit log. 如需完整的列表,请参阅保留策略和保留标签活动For the full list, see Retention policy and retention label activities.

高级电子数据展示Advanced eDiscovery