Cant Enable Access Control for Sensitivity Labels in Microsoft Purview

Question

Hello,

I am using Microsoft Purview to create sensitivity labels. While creating labels I wanted to enable access control for one of them.

When going to save the label I get the following error message "Rights Management is not active for the tenant".

I did some research on this and it seemed like I needed to enable it in Office 365 Admin center. I went to Settings > Org Settings > Microsoft Azure Information Protection‎ and when I clicked on the link "Manage ‎Microsoft‎ ‎Azure Information Protection‎ settings" it said the page was deprecated.

I am unsure as to where I am supposed to enable this now. I looked in Purview for any settings surrounding this and only saw settings for "Co-authoring for files with sensitivity labels" and "Information protection scanner".

I have Microsoft Office Business Premium for my organization.

Any help is much appreciated, let me know if you need any further clarification.

Answer 1

M365 Business Premium should have this enabled by default IIRC, can you double-check what plan you are on? As for activating the service manually, it is indeed no longer possible to do this via the UI. You have to use PowerShell instead, here are the relevant documentation bits:

You must use PowerShell to activate the Rights Management protection service (Azure RMS). You can no longer activate or deactivate this service from the Azure portal. Install the AIPService module, to configure and manage the protection service. For instructions, see Installing the AIPService PowerShell module. From a PowerShell session, run Connect-AipService, and when prompted, provide the Global Administrator account details for your Azure Information Protection tenant. Run Get-AipService to confirm whether the protection service is activated. A status of Enabled confirms activation; Disabled indicates that the service is deactivated. To activate the service, run Enable-AipService.