Microsoft 365 Alert – Service Degradation – Microsoft 365 suite – Admins may experience delays in activating Adaptive Protection for Microsoft Purview services – RESOLVED

13/04/2023 09:00:00 AM (GMT)

NHSmail Reference : INC35290057

Microsoft Reference : MO540640

Issue Status : RESOLVED

Issue Description : Admins may experience delays in activating Adaptive Protection for Microsoft Purview services.

More Information : This communication relates to activating Adaptive Protection for Microsoft Purview, which leverages Insider Risk Management and Data Loss Prevention, and more information can be found at https://techcommunity.microsoft.com/t5/security-compliance-and-identity/enable-adaptive-protection-with-microsoft-purview/ba-p/3731486. Adaptive Protection is a capability of Microsoft Purview that leverages machine learning to understand how users interact with data, assign risk levels, and automatically tailor Microsoft Purview Data Loss Prevention controls.

Final Update : 20/04/2023 08:55:00 AM – Microsoft have confirmed that all activations have been processed as expected and that the code fix has successfully remediated the impact.

Scope of impact : Impact may occur for all admins that attempted to activate Adaptive Protection in Microsoft Purview between Saturday, February 25, 2023, and Friday, April 7, 2023.

Root cause : An update to Role Based Access Control (RBAC) introduced a regression that impacted the Adaptive Protection activation flow for Microsoft Purview, which leverages Insider Risk Management and Data Loss Prevention.

Next steps : Microsoft are reviewing the impacting update to understand why it introduced a code regression so that they can improve their testing and validation cycles, detect and resolve such issues prior to deployment, and prevent similar impact from reoccurring in the future.