Registering and authenticating BMC Helix ITSM application with Microsoft Office 365

To integrate Microsoft Office 365 with BMC Helix ITSM, you first register and authenticate BMC Helix ITSM with Microsoft Office 365. This one-time configuration ensures that both systems interact with each other.

After you integrate, you can subscribe to DLP events and manage data violations.

• Access the DLP Configuration Wizard.
• Retrieve the authorization URL.
• Register and authenticate the BMC Helix ITSM application.
• Enable polling to receive DLP events.

To register and authenticate BMC Helix ITSM

1. Access the DLP Configuration Wizard.
   1. Log on to BMC Helix ITSM as an administrator.
   2. Open the Application Administration Console.
   3. Click Custom Configuration > Incident Management > Advanced Options > DLP Application Configuration.
   4. Click New Request to open the DLP Configuration Wizard in new mode.
      
      
2. From the Company list, select the name of the company that you want to register and click Next.
3. Retrieve the Authorization URL.
   1. Populate the Client ID, Client Key, and Reply URL fields from the Azure AD application configuration.
      See the related Microsoft documentation at: https://msdn.microsoft.com/EN-US/library/office/dn707383.aspx.
   2. Click Build Authorization URL.
      An authorization key is added to the Tenant Auth URL field.
   3. Copy the authorization key from the Tenant Auth URL field and paste it in a browser.
   4. Log in to Microsoft Office 365 as an administrator.
   5. From the browser's URL box, copy the value of the code parameter and paste it in the App Code field.
      
4. To register BMC Helix ITSM, click Register Application.
5. Click OK.
6. To enable polling to receive DLP events, click Enable Polling. Verify that the Yes option is selected, which indicates that your BMC Helix ITSM application is authenticated and is ready to receive DLP events.
7. Click Close.

To edit registration and authentication information

1. Open the DLP Configuration wizard in Search mode.
2. Select the company and click Search.
3. Click the Edit Registration/Authentication link.
4. To edit, click the Edit Configuration link.
   
5. Click Yes to continue.

To subscribe or unsubscribe to DLP events

After your BMC Helix ITSM application is successfully registered with Microsoft Office 365, you can configure your BMC Helix ITSM application to subscribe to DLP events from Microsoft Office 365. After you subscribe to DLP events, BMC Helix ITSM receives the enriched DLP events to further create DLP incidents and route them to the appropriate compliance group. Assignment routing of the DLP events is critical to ensure data compliance.

Subscribe to DLP events so that DLP incidents can be created in BMC Helix ITSM. After you register your BMC Helix ITSM application with Microsoft Office 365, you can subscribe to either Microsoft SharePoint or Microsoft Exchange events.

You can subscribe to the following events:

• Microsoft SharePoint—To track document violations in SharePoint O365 that match one or more DLP rule conditions.
• Microsoft Exchange—To track email violations in Exchange O365 with content that matches one or more DLP rule conditions.
  
  

1. Select Custom Configuration > Incident Management > Advanced Options > DLP Application Configuration wizard.
2. Click New Search.
3. From the Company list, select the name of the company for which you have already registered.
4. Click Search.

5. In the Manage subscriptions panel, from the Subscription Type list, select the required content source.

6. Click Subscribe.
7. To view the list of active subscriptions, click Show Active Subscriptions.
   A list of active subscriptions is displayed.
8. To stop the subscription, click Unsubscribe.
9. To subscribe to sensitive data, perform the following:
   1. Select Yes for the Include Sensitive Data for Active Subscriptions label.
   2. Click Apply.

To map operational categories

You can map categorization, impact, and urgency to incidents for subscriptions, so that incident priority is calculated and the incident is routed to the right support group.

1. In the Incident values for Content Type subscription area, configure the incident mappings.
   1. From the Operational Categorization lists, set values for Operational Categorization Tier 1, Tier 2, and Tier 3.
   2. From the Impact list, set the value for incident impact.

   3. From the Urgency list, set the value for incident urgency.
      The operational categories are used to route the incident to the assigned support group. Ensure that the assignment configuration is already done for the selected company. The Impact and Urgency values are used for calculating incident priority.

      

2. Click Save Incident Mappings.
   For active subscriptions, the DLP events are routed to the specified groups by using the operational categories.
3. To verify the registration and assignment configuration, click the Create Sample DLP Event link.
   A sample incident is created.
4. Click Close.