Data Loss Prevention (DLP) in Exchange 2013


Data Loss Prevention (DLP) is a mechanism introduced in Exchange 2013 to prevent accidental or malicious disclosure of information via email message. Built-in DLP solution in Exchange 2013 scan message header, message body and attachment based on DLP rule by the transport agent. There are certain conditions applied in Exchange 2013 DLP.

Notify Only Policy

The following conditions can be used:

  • The recipient is
  • The recipient is located
  • The sender is
  • The sender is a member of
  • The sender is located

The following actions can’t be used:

  • Reject the message and include an explanation
  • Reject the message with the enhanced status code of
  • Delete the message without notifying anyone

Block Message Policy

  • Block the message, but allow the sender to override and send
  • Block the message.

To add a notify only DLP policy:

  1. Go to Exchange Administration Center, Go to Compliance management > Data loss prevention
  2. Then go to Policies, Select Edit
  3. On the Edit DLP policy page, select Rules.
  • To add Policy Tips to an existing rule, highlight the rule and select Edit.
  • To add a new blank rule that you can fully customize, select Add or plus sign and then select Create a new rule .
  1. Select plus sign, select the sensitive information types, select Add, select OK, and then select OK.
  2. In the Do the following box, select Notify the sender with a Policy Tip, and select an option in the Choose whether the message is blocked or can be sent drop-down list, and then select OK.
  3. If you want to add additional conditions or actions, at the bottom of the window, select More options.
  4. In the Choose a mode for this rule list, select whether you want the rule to be enforced. We recommend testing the rule first.
  5. Select Save to finish.

To add a block message DLP policy:

  1. In the Exchange Administration Center, go to Compliance management > Data loss prevention.
  2. Select desired policy> Click Edit .
  3. On the Edit DLP policy page, select Rules.
  • To add Policy Tips to an existing rule, highlight the rule and select Edit .
  • To add a new blank rule that you can fully customize, select Add .
  • To add an action that will reveal a Policy Tip, select More options and then select the Add action
  1. From the drop down list, select Notify the sender with a Policy Tip and then select Block the message.
  2. Select OK, then select Save to finish modifying the rule and save your changes.

About Raihan Al-Beruni

My Name is Raihan Al-Beruni. I am working as an Infrastructure Architect in Data Center Technologies in Perth, Western Australia. I have been working on Microsoft technologies for more than 15 years. Other than Microsoft technologies I also work on Citrix validated solution and VMware data center virtualization technologies. I have a Masters degree in E-Commerce. I am certified in Microsoft, VMware, ITIL and EMC. My core focus is on cloud technologies. In my blog I share my knowledge and experience to enrich information technology community as a whole. I hope my contribution through this blog will help someone who wants more information on data center technologies.
This entry was posted in Exchange Server and tagged , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s