🔒 Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901 aws-saa-c03 aws-aif-c01
Guided MS-700 Domain 1
Domain 1 — Module 5 of 13 38%
5 of 27 overall

MS-700 Study Guide

Domain 1: Configure and manage a Teams environment

  • Network Planning & Readiness
  • Security Roles, Alerts & Defender
  • Retention & Sensitivity Labels
  • DLP & Conditional Access
  • Information Barriers & Insider Risk
  • Update Policies & Policy Packages
  • Group Creation, Naming & Expiration
  • Archive, Restore & Access Reviews
  • Guest Access & External Sharing
  • Shared Channels & Cross-Tenant Access
  • Teams Phone & Resource Accounts
  • Teams Rooms & Device Management
  • PowerShell & Graph Automation

Domain 2: Manage teams, channels, chats, and apps

  • Teams Rollout & Creation Free
  • Membership, Roles & Team Settings Free
  • Channel Types & Policies Free
  • App Management & Permissions Free
  • App Extensibility & Store Free

Domain 3: Manage meetings and calling

  • Meeting Types & Settings
  • Webinars & Town Halls
  • Phone Numbers & Conferencing
  • Voice Policies & Voicemail
  • Auto Attendants & Call Routing

Domain 4: Monitor, report on, and troubleshoot Teams

  • Voice & Meeting Quality
  • Usage, Alerts & Diagnostics Tools
  • Client Logs & Diagnostics
  • Copilot & Meeting Troubleshooting

MS-700 Study Guide

Domain 1: Configure and manage a Teams environment

  • Network Planning & Readiness
  • Security Roles, Alerts & Defender
  • Retention & Sensitivity Labels
  • DLP & Conditional Access
  • Information Barriers & Insider Risk
  • Update Policies & Policy Packages
  • Group Creation, Naming & Expiration
  • Archive, Restore & Access Reviews
  • Guest Access & External Sharing
  • Shared Channels & Cross-Tenant Access
  • Teams Phone & Resource Accounts
  • Teams Rooms & Device Management
  • PowerShell & Graph Automation

Domain 2: Manage teams, channels, chats, and apps

  • Teams Rollout & Creation Free
  • Membership, Roles & Team Settings Free
  • Channel Types & Policies Free
  • App Management & Permissions Free
  • App Extensibility & Store Free

Domain 3: Manage meetings and calling

  • Meeting Types & Settings
  • Webinars & Town Halls
  • Phone Numbers & Conferencing
  • Voice Policies & Voicemail
  • Auto Attendants & Call Routing

Domain 4: Monitor, report on, and troubleshoot Teams

  • Voice & Meeting Quality
  • Usage, Alerts & Diagnostics Tools
  • Client Logs & Diagnostics
  • Copilot & Meeting Troubleshooting
Domain 1: Configure and manage a Teams environment Premium ⏱ ~12 min read

Information Barriers & Insider Risk

Some people in your organisation must NOT communicate with each other. Learn how information barriers enforce ethical walls and how insider risk management detects suspicious behaviour in Teams.

Walls within Teams

☕ Simple explanation

Imagine a law firm where the merger team and the litigation team for the SAME client must never talk to each other.

Information barriers (IBs) are invisible walls inside Teams. Traders can’t chat with research analysts. M&A advisors can’t message the team advising the other side of the deal. These walls are legally required in financial services — and IB policies enforce them automatically.

Insider risk management is different — it watches for suspicious patterns. Did an employee about to resign suddenly download 500 files from Teams? Did someone start sending confidential files to a personal email? Insider risk detects these patterns and alerts the compliance team.

Information barrier (IB) policies are configured in Microsoft Purview and enforced across Teams, SharePoint, and OneDrive. They use segments (defined by user attributes like department) to block or allow communication between groups. IBs affect Teams chat, calls, meeting invites, team membership, and even search — users in blocked segments can’t find each other.

Insider risk management uses machine learning and signal correlation to detect risky user activities — data theft, confidential leaks, security policy violations. It integrates with Teams to monitor message patterns, file sharing, and meeting content (when communication compliance is enabled). Communication compliance specifically monitors Teams messages for policy violations like harassment, profanity, regulatory non-compliance, or sharing of sensitive information.

Information barriers

How IB works in Teams

IB policies use segments — groups of users defined by attributes (like department, job title, or custom attributes in Entra ID). You then create policies that define which segments are blocked from communicating.

What IBs block in Teams:

  • 1:1 and group chats
  • Calls (voice and video)
  • Adding members to a team or channel
  • Meeting invitations (blocked users can’t be invited together)
  • User search (blocked users don’t appear in search results)
  • File sharing in Teams chats

Setting up information barriers

  1. Define segments in Microsoft Purview → Information barriers → Segments

    • Example: “Trading Desk” = users where Department = Trading
    • Example: “Research Analysts” = users where Department = Research

  2. Create IB policies → Policies → Define block/allow rules

    • “Trading Desk” Block communication with “Research Analysts”
    • This is bidirectional — both sides are blocked

  3. Apply the policies → Run the policy application process

    • This triggers compliance checks across existing Teams memberships
    • Users who violate the policy are automatically removed from teams/chats they shouldn’t be in
Scenario: Nadia's ethical walls at Sterling Financial

Sterling Financial has three trading desks and a research department. Regulators require “ethical walls” (Chinese walls) between them:

Segments:

  • Equity Trading (50 users)
  • Fixed Income Trading (30 users)
  • Research Analysts (20 users)
  • Compliance (10 users — must communicate with everyone)

IB Policies:

  • Equity Trading BLOCK Research Analysts
  • Fixed Income Trading BLOCK Research Analysts
  • Compliance ALLOW all segments (compliance is exempt)

What happens:

  • A trader tries to add a research analyst to a Teams group chat → blocked
  • A research analyst searches for a trader in Teams → trader doesn’t appear in results
  • Compliance officer Elena invites both a trader and analyst to separate 1:1 chats → allowed (Elena can talk to both, but they can’t talk to each other)
  • An existing team that accidentally has both traders and analysts → IB policy application removes the violating members automatically

IB prerequisites and licensing

  • Licence: Microsoft 365 E5, E5 Compliance, or Information Barriers add-on
  • Entra ID attributes must be populated (department, job title, etc.) — segments use these
  • Scoped directory search must be enabled in Teams
  • IB policies take up to 24 hours to fully propagate after application
  • IBs work across Teams, SharePoint, and OneDrive — not just Teams in isolation

Insider risk management

What it detects

Insider risk management monitors for patterns like:

Risk CategoryExample SignalsTeams Relevance
Data theft by departing employeeMass file downloads, external sharing spike before resignationTeams files shared to external parties
Data leaksSensitive files shared to personal accounts, printing spikesTeams messages containing sensitive info sent to external chats
Security policy violationsAccessing restricted sites, using unmanaged devicesAccessing Teams from non-compliant devices (combined with CA signals)
Patient data misuse (healthcare)Accessing records outside of care assignmentTeams discussions about patients outside authorised channels

Exam tip: Insider risk management does NOT read message content by default. It analyses metadata and patterns — who’s sharing, how much, when. Content-level monitoring requires communication compliance to be enabled separately.

Communication compliance

Communication compliance specifically monitors message content in Teams:

  • Offensive language detection — profanity, harassment, threats
  • Regulatory compliance — financial advice, insider trading language, HIPAA references
  • Sensitive information — similar to DLP but focused on pattern detection over time
  • Custom keyword policies — specific terms your organisation defines
  • Copilot-generated summaries — flag messages for reviewer without reading full conversations
Teams compliance features comparison
FeatureWhat It MonitorsHow It WorksKey Difference
Information barriersCommunication between specific groupsBlocks communication between defined segmentsPreventive — stops communication before it happens
Insider risk managementUser behaviour patterns (metadata)Machine learning detects anomalous activity patternsDetective — identifies risky patterns after they start
Communication complianceMessage content (text)Scans messages against policies, flags for reviewerDetective — monitors content for policy violations
DLPSensitive information typesReal-time scan and block/warnPreventive — blocks sensitive data in real-time

🎬 Video walkthrough

🎬 Video coming soon

Information Barriers & Insider Risk — MS-700 Module 5

Information Barriers & Insider Risk — MS-700 Module 5

~10 min

Flashcards

Question

What do information barriers block in Teams?

Click or press Enter to reveal answer

Answer

Chats, calls, meeting invitations, team/channel membership, user search, and file sharing between defined segments. Blocked users can't even find each other in Teams search.

Click to flip back
Question

What's the difference between information barriers and DLP?

Click or press Enter to reveal answer

Answer

IBs are preventive walls between groups — they block ALL communication between segments regardless of content. DLP scans message content for specific sensitive information types and blocks/warns based on what's shared, not who's sharing.

Click to flip back
Question

Does insider risk management read Teams message content?

Click or press Enter to reveal answer

Answer

No — by default it analyses metadata and behaviour patterns (who, how much, when). Content-level message monitoring requires communication compliance to be enabled separately.

Click to flip back

Knowledge Check

Knowledge Check

Sterling Financial's regulators require that equity traders and research analysts cannot communicate in any Microsoft 365 service. What should Nadia configure?
Knowledge Check

A compliance officer at Sterling Financial notices that a trader who submitted their resignation last week has been downloading unusually large volumes of files from Teams channels. Which feature would BEST detect this pattern?

Next up: Update Policies & Policy Packages — how to control Teams client updates and bundle policies into ready-made packages for different user groups.

← Previous

DLP & Conditional Access

Next →

Update Policies & Policy Packages

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.