Overview
This guide provides an overview of the configuration settings required for export of content to Microsoft Purview. Export to Microsoft Purview is supported for any capture source supported by Nuclei.
Items are exported into the mailbox of a specific user or into a "catch-all" third-party data mailbox. Whether an item is imported into a specific user mailbox or to the third-party data mailbox is based on the following criteria:
- Items that have a user ID that corresponds to a user account: If the partner connector can map the user ID of the item in the third-party data source to a specific user ID in Microsoft 365, the item is copied to the Purges folder in the user's Recoverable Items folder. Users can't access items in the Purges folder. However, you can use eDiscovery tools to search for items in the Purges folder.
- Items that don't have a user ID that corresponds to a user account: If the partner connector can't map the user ID of an item to a specific user ID, the item is copied to the Inbox folder of the third-party data mailbox. Importing items to the inbox allows you or someone in your organization to sign in to the third-party mailbox to view and manage these items, and see if any adjustments need to be made in the partner connector configuration.
Prerequisites
- Microsoft 365
- Microsoft Graph API
- Nuclei Compliance (Purview Export) app authorization
- Microsoft Compliance Manager
- Compliance Administrator
- Archiving Mailbox
QuickStart
- Create and configure a third-party data mailbox in Microsoft 365
- Configure user mailboxes for third-party data
- Authorize the Nuclei Compliance (Purview Export) archiving app
Getting Setup
Create and configure a third-party mailbox in Microsoft 365
The first step is to configure a third-party archiving mailbox that can be used to store archived data for items that cannot be mapped to a specific user ID in Microsoft 365.
- Create a user account and assign it an Exchange Online Plan 2 license.
- Hide the third-party data mailbox from the address book and other address lists in your organization. (guide)
- Assign the FullAccess permission to the third-party data mailbox so that administrators or compliance officers can open the third-party data mailbox in the Outlook desktop client.
- Enable the following compliance-related features for the third-party data mailbox:
- Enable the archiving mailbox (guide)
- Enable auto-expanding archiving (guide)
- Place the third-party mailbox on Litigation Hold (optional, guide)
- Set the retention settings for the third-party mailbox (guide)
- Enable mailbox audit logging for owner, delegate, and admin access to the third-party archiving mailbox. (guide)
Configure user mailboxes for third-party data
The next step is to configure user mailboxes to support third-party data. Complete these tasks by using the Exchange admin center or by using the corresponding cmdlets.
-
Enable the archive mailbox for each user; see Enable archive mailboxes and Enable auto-expanding archiving.
-
Place user mailboxes on Litigation Hold or apply a Microsoft 365 retention policy; see one of the following articles:
As previously stated, when you place mailboxes on hold, you can set a duration for how long to hold items from the third-party data source or you can choose to hold items indefinitely.
Authorize the Nuclei Compliance (Purview Export) archiving app
To authorize the export integration you must first obtain the app authorization URL from Nuclei. Afterwards, you can complete authorization of the export integration:
More Information
For support completing the Microsoft Purview export configuration please contact Nuclei's support team at support@nuclei.ai.
Comments
0 comments
Article is closed for comments.