Applying Forcepoint DSPM Classification Tags to Files Stored on SharePoint

This feature allows you to add Forcepoint DSPM file classification tags to files containing sensitive data stored in a SharePoint system.

However, the Forcepoint DSPM file classification tag can be applied only if the same is defined in MS Purview.

Prerequisites

Your SharePoint site should be set up with the right permissions as explained in section: Registering an Azure App.

Check if MS Purview labels are already present or create (if necessary) as explained in the steps below.

1. Locate the Purview application from the tools menu on SharePoint.

   

2. Login to Purview and search for sensitivity labels as shown below:

   

3. Create the label with exact text as that used in the DSPM tag:

   

4. Enter the Name, Display Name, and Description for users and click Next. An example is shown below:

   

5. On the next screen, select only Files & other data assets:

   

6. In the following screen, select the option Control Access as shown in the example below:

   

7. On the next screen, click Assign permissions, which opens the following page, where you need to select the options +Add all users and groups in your organization and click Save.

   

8. On the screens that follow accept the default and click Next. Finally, on the Review your settings and finish page, click Create label after confirming all details are correct.

   

9. Finally once label is created, click Done.

   

10. . On the next screen, under public label, select the label policy as shown in the example below and click Add:

    

11. Review the details and click Add:

    

12. You can now see the following Sensitivity labels defined: