In this #PowerShot, I will show you how to create a DLP (Data Loss Prevention) policy and implement GDPR (General Data Protection Regulation) from the Power Platform Admin center. We will also look at how this affects importing solutions with Flows/ Canvas Apps that connect to the services that are affected by implementing the DLP policy.
Let's Get Started!
Create a Data Loss Prevention Policy
Step 1: Navigate to https://admin.powerapps.com/apiPolicies
Step 2: Click on '+ New Policy' to create a new policy
Step 3: Assign a name to the policy and then select the environment(s) on which you want to implement it. Once done, click on continue to proceed to the next step.
Step 4: At this stage you can group the connectors onto the Business data only and the No business data allowed groups as shown in the image below. More details on the data groups here. Once done, click on 'Save Policy' to create and save the policy.
Effect of DLP policy on importing 3rd party/ externally developed solutions
Once the DLP policy in place, externally developed solutions (outside of the tenant or the environment in which DLP is implemented) that include components using the connectors and services restricted by the policy cannot be imported directly.
I created a flow as a part of a solution and then tried importing it as an un-managed solution in the DLP implemented environment and during import, a warning message was generated for the flow. Once imported and published customization, the flow was accessible in the environment and the below error popped while trying to activate it:
"Your flow could not turn on: Button Flow. Error: Flow client error returned with status code "Forbidden" and details "{"error":{"code":"ApiPolicyOrThrottlingViolation","message":"Flow '' cannot be activated due to either admin API policies or billing throttling. "}}""
The issue restricting the flow was the DLP policy and upon deactivating it and then importing the solution, the solution was imported successfully and I was able to activate the flow as expected.
In this post we saw how we can created DLP policies to implement GDPR in the Power Platform Admin Center. Implementing this affects the process of importing solutions that were developed in a different tenant that use services or connectors that are restricted in the DLP policy. We saw how enforcing the policy affects solution imports and how we can resolve the same.
I would like to thank @PieterVeenstra for all the help in putting this together.
I hope you found this interesting and it helped you. Thank you for reading!
תגובות