Share via

Test sensitive information types

  • Article

At anytime during the life of a sensitive information type (SIT), you can test how it performs. This article explains how to do that in the Microsoft Purview portal and the Microsoft Compliance portal.

Tip

If you're not an E5 customer, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Start now at the Microsoft Purview trials hub. Learn details about signing up and trial terms.

Before you begin

Important

Microsoft Customer Service & Support can't assist with creating custom classifications or regular expression patterns. Support engineers can provide limited support for the feature, such as, providing sample regular expression patterns for simulation purposes, or helping to troubleshoot an existing regular expression pattern that's not triggering as expected. However, they can't provide assurances that any custom content-matching development will fulfill your requirements or obligations.

Permissions and role groups

The account you use to test sensitive information type performance must be a member of one of the following role groups:

  • Compliance Administrator
  • Compliance Data Administrator
  • Security Administrator
  • Communication Compliance Admins
  • Information Protection Admins
  • Information Protection Investigators
  • Organization Management

Enable access to test mode for primary role groups

Applies to:

  • Compliance Administrator
  • Compliance Data Administrator
  • Security Administrator

To enable access to the simulation feature for these role groups, you must assign each user to the appropriate group via Microsoft Entra ID (formerly Azure Active Directory).

To assign a user to a primary role group in the Microsoft Purview portal, follow the steps in Add users or groups to a Microsoft Purview built-in role group.

To assign a user to a primary role group in the Microsoft Compliance portal, follow the steps in Add users or groups to a Microsoft Purview built-in role group.

Enable access to simulation mode for secondary users

Applies to:

  • Communication Compliance Admins
  • Information Protection Admins
  • Information Protection Investigators
  • Organization Management

To assign a user to a primary role group in the Microsoft Purview portal, follow the steps in Add users or groups to a Microsoft Purview built-in role group in the Microsoft Purview portal.

To assign a user to a primary role group in the Microsoft Compliance portal, follow the steps in Add users or groups to a Microsoft Purview built-in role group in the Microsoft Compliance portal.

Test the effects of a sensitive information type

You can test the effects of any sensitive information type in the list. We suggest that you run a simulation for each sensitive information type that you create before using it in a policy.

Note

This procedure is only supported for unencrypted files.

Select the appropriate tab for the portal you're using. Depending on your Microsoft 365 plan, the Microsoft Purview compliance portal is retired or will be retired soon.

To learn more about the Microsoft Purview portal, see Microsoft Purview portal. To learn more about the Compliance portal, see Microsoft Purview compliance portal.

  1. Prepare two files, for example, two Word documents. One should have content that matches the elements you specified in your sensitive information type. The other should have content that doesn't match.

  2. Sign in to the Microsoft Purview portal > Information Protection > Classifiers > Sensitive info types and choose the sensitive information type from the list to open the details pane. Choose Test.

  3. Upload a file and choose Test. (You can only upload and run a simulation for one file at a time.)

  4. On the Match results page, review the results and choose Finish.

  5. Perform the same steps for the second file.