Installing Nucleuz DLP Sensitive Types in
Microsoft Office 365 (O365)
Microsoft Exchange Online

These instructions will help guide you through the installation of Nucleuz's DLP Sensitive Types (aka Classification Rules) in Microsoft Office 365 (O365) or Microsoft Exchange Online.


The following prerequisites are needed before installation:

  • A Microsoft Office 365 (O365) account with DLP enabled (E3 plan or higher)
    A Microsoft Exchange Online account with DLP enabled (Plan 2 or higher)
  • Nucleuz's DLP Sensitive Types Rule Pack.
    This is provided by Nucleuz. Contact Nucleuz if you do not have it.
  • An Exchange user account assigned at least one of these role groups, an equivalent custom role group, or an equivalent management role:
    • Compliance Management
    • Organization Management

    See Microsoft's Messaging Policy and Compliance Permissions TechNet article for more information about permissions for compliance management.


Installation is performed by first establishing a remote PowerShell session to your O365 or Exchange Online account, and then using that PowerShell session to install the sensitive types.

  1. Follow these instructions to connect to your O365 or Exchange Online account using remote PowerShell.
  2. Using the remote PowerShell session that you setup in the step above, follow the instructions for installing Nucleuz DLP Sensitive Types in Exchange On-Premise, by using the remote PowerShell session instead of the local Exchange Management Shell.

Using Nucleuz's DLP Sensitive Types in DLP Policies

To use Nucleuz's DLP Sensitive Types in DLP policies:

  1. Sign into Exchange Admin Center
  2. Navigate to compliance management using the link on the left-hand side.
  3. Navigate to data loss prevention using the link near the top.
  4. Create or edit a DLP Policy and incorporate the new DLP Sensitive Type(s).
For more information about managing DLP Policies, start with Microsoft's DLP Policy Templates documentation and Manage DLP policies.