什麼是 Azure 資訊保護?What is Azure Information Protection?

*適用於:*Azure 資訊保護*Applies to: Azure Information Protection*

*相關AIP 統一標籤用戶端和傳統用戶端**Relevant for: AIP unified labeling client and classic client*

Azure 資訊保護 (AIP) 是一種雲端式解決方案,其可讓組織將標籤套用到內容,以探索、分類及保護文件和電子郵件。Azure Information Protection (AIP) is a cloud-based solution that enables organizations to discover, classify, and protect documents and emails by applying labels to content.

AIP 是 Microsoft 資訊保護 (MIP) 解決方案的一部分,且擴充 Microsoft 365 所提供的標籤和分類功能。AIP is part of the Microsoft Information Protection (MIP) solution, and extends the labeling and classification functionality provided by Microsoft 365.

下圖顯示 MIP 的 Azure 資訊保護新增項目,包括統一標籤用戶端掃描器SDKThe following image shows the Azure Information Protection additions to MIP, including the unified labeling client, scanner, and SDK.

Microsoft 資訊保護架構的 Azure 資訊保護區域

Microsoft 資訊保護是 AIP 統一標籤用戶端所利用的一般資訊保護堆疊。Microsoft Information Protection is the common information protection stack that's leveraged by AIP's unified labeling client. 如需詳細資訊,請參閱 Microsoft 365 文件For more information, see the Microsoft 365 documentation.

AIP 統一標籤用戶端AIP unified labeling client

Azure 資訊保護統一標籤用戶端會將標籤、分類及保護功能延伸到其他檔案類型,以及延伸到檔案總管和 PowerShell。The Azure Information Protection unified labeling client extends labeling, classification, and protection capabilities to additional file types, as well as to the File Explorer and PowerShell.

例如,在檔案總管中,以滑鼠右鍵按一下一或多個檔案,然後選取 [分類並保護],以管理所選檔案的 AIP 功能。For example, in the File Explorer, right-click one or more files and select Classify and protect to manage the AIP functionality on the selected files.

從檔案總管分類並保護

如需統一標籤用戶端其最新功能和公開預覽版本的詳細資料,請參閱 Azure 資訊保護統一標籤用戶端 - 版本發行歷程記錄及支援原則For details about the latest features and public preview version of the unified labeling client, see Azure Information Protection unified labeling client - Version release history and support policy.

Microsoft Azure 資訊保護下載頁面下載用戶端。Download the client from the Microsoft Azure Information Protection download page.

AIP 內部部署掃描器AIP on-premises scanner

Azure 資訊保護內部部署掃描器可讓系統管理員掃描其內部部署檔案存放庫,以確認其中是否有必須標記、分類及 (或) 保護的敏感性內容。The Azure Information Protection on-premises scanner enables administrators to scan their on-premises file repositories for sensitive content that must be labeled, classified, and/or protected.

內部部署掃描器是使用統一標籤用戶端隨附的 PowerShell Cmdlet 來安裝,且可使用 PowerShell 和 Azure 入口網站中的 Azure 資訊保護區域來管理。The on-premises scanner is installed using PowerShell cmdlets provided as part of the unified labeling client, and can be managed using PowerShell and the Azure Information Protection area in the Azure portal.

例如,使用 Azure 入口網站上顯示的掃描器資料,以尋找網路上可能內含有風險敏感性內容的存放庫:For example, use the scanner data shown on the Azure portal to find repositories on your network that might have sensitive content at risk:

檢查已掃描的網路是否有風險性存放庫

如需詳細資訊,請參閱For more information, see:

Microsoft Azure 資訊保護下載頁面與用戶端一起下載掃描器安裝。Download the scanner installation together with the client from the Microsoft Azure Information Protection download page.

Microsoft 資訊保護 SDKMicrosoft Information Protection SDK

Microsoft 資訊保護 SDK 可將敏感度標籤延伸到協力廠商應用程式和服務。The Microsoft Information Protection SDK extends sensitivity labels to third-party apps and services. 開發人員可以使用 SDK 來建置內建支援,以將標籤和保護套用至檔案。Developers can use the SDK to build built-in support for applying labels and protection to files.

例如,您可使用 MIP SDK 來進行下列動作:For example, you might use the MIP SDK for:

  • 匯出時將分類標籤套用至檔案的企業營運應用程式。A line-of-business application that applies classification labels to files on export.
  • CAD/CAM 設計應用程式會提供 Microsoft 資訊保護標籤的內建支援。A CAD/CAM design application provides built-in support for Microsoft Information Protection labeling.
  • 雲端存取安全性訊息代理程式或資料遺失防護解決方案推論資料是使用 Azure 資訊保護所加密。A cloud access security broker or data loss prevention solution reasons over data encrypted with Azure Information Protection.

如需詳細資訊,請參閱 Microsoft 資訊保護 SDK 概觀For more information, see the Microsoft Information Protection SDK overview.

後續步驟Next steps

若要開始使用 AIP,請下載並安裝統一標籤用戶端和掃描器。To get started with AIP, download and install the unified labeling client and scanner.

使用初始教學課程來 熟悉 AIPGet familiar with AIP using our initial tutorials:

當準備好進一步自訂 AIP 時,請參閱 系統管理員指南:Azure 資訊保護統一標籤用戶端的自訂設定When you're ready to customize AIP further, see Admin Guide: Custom configurations for the Azure Information Protection unified labeling client.

若要開始使用 MIP SDK,請參閱 Microsoft 資訊保護 (MIP) SDK 安裝和設定To get started with the MIP SDK, see Microsoft Information Protection (MIP) SDK setup and configuration.

其他資源Additional resources

資源Resource 連結和描述Links and description
訂用帳戶選項與定價Subscription options and pricing Azure 資訊保護定價Azure Information Protection Pricing
常見問題集與已知問題FAQs and known issues Azure 資訊保護的常見問題集Frequently asked questions for Azure Information Protection
已知問題 - Azure 資訊保護Known issues - Azure Information Protection
支援選項Support options Azure 資訊保護的支援選項Support options for Azure Information Protection
YammerYammer Azure 資訊保護Azure Information Protection
新功能What's new? 在 Microsoft 365 和 SharePoint 系統管理中心查看與 AIP 相關的新功能:Watch for new features related to AIP in the Microsoft 365 and SharePoint admin centers:
- Microsoft 365 系統管理中心的新功能- What's new in the Microsoft 365 admin center?
- SharePoint 系統管理中心的新功能- What's new in the Sharepoint admin center?

熱門 Ignite 研討會Top Ignite sessions

查看下列來自 Ignite 2020 的錄製研討會:See the following recorded sessions from Ignite 2020:

AIP 的傳統用戶端AIP's classic client

Azure 資訊保護傳統用戶端是舊版的 AIP,可讓系統管理員直接在 Azure 入口網站中管理分類標籤。The Azure Information Protection classic client is the earlier version of AIP, and enables administrators to manage classification labels directly in the Azure portal.

統一標籤平台「不」支援在 Azure 入口網站中管理的 AIP 標籤,這些標籤僅限用於 Azure 資訊保護的用戶端和掃描器,以及 Microsoft Cloud App Security。AIP labels managed in the Azure portal are not supported by the unified labeling platform, are limited to working with the Azure Information Protection client and scanner, and Microsoft Cloud App Security.

我們建議移轉至統一標籤以支援這些功能,以及 SharePoint、Microsoft 365 應用程式、適用於 Web 和行動裝置的 Outlook、PowerBI 資料保護等。We recommend migrating to unified labeling to support these features, as well as SharePoint, Microsoft 365 apps, Outlook for the web and mobile devices, PowerBI data protection, and more. 如需詳細資訊,請參閱教學課程:從 Azure 資訊保護 (AIP) 傳統用戶端移轉至統一標籤用戶端For more information, see Tutorial: Migrating from the Azure Information Protection (AIP) classic client to the unified labeling client.

注意

為了提供統一且流暢的客戶體驗,自 2021 年 3 月 31 日 起,Azure 入口網站將 淘汰 Azure 資訊保護傳統用戶端標籤管理To provide a unified and streamlined customer experience, Azure Information Protection classic client and Label Management in the Azure Portal are being deprecated as of March 31, 2021.

此時間範圍可讓所有目前的 Azure 資訊保護客戶使用 Microsoft 資訊保護統一標籤解決方案以轉換至統一標籤。This time-frame allows all current Azure Information Protection customers to transition to unified labeling using the Microsoft Information Protection Unified Labeling solution. 在正式的淘汰通知 (英文) 中深入了解。Learn more in the official deprecation notice.