Merge branch 'SIS-chrisda' into patch-18

chrisda · web-flow · commit a0c599d299c5 · 2025-07-17T10:43:56.000-07:00
diff --git a/exchange/exchange-ps/exchange/New-SensitiveInformationScan.md b/exchange/exchange-ps/exchange/New-SensitiveInformationScan.md
@@ -53,10 +53,12 @@ To use this cmdlet in Security & Compliance PowerShell, you need to be assigned
 
 ### Example 1
 ```powershell
-{{ Add example code here }}
+New-SensitiveInformationScan "SharePoint scan" -SharePointLocation All
+
+New-SensitiveInformationScanRule "SharePoint scan rule" -ContentExtensionMatchesWords "pdf", "docx" -Policy "SharePoint scan" -Workload SharePoint
 ```
 
-{{ Add example description here }}
+This example creates a scan for all SharePoint sites scoped to pdf and docx files only.
 
 ## PARAMETERS
 
diff --git a/exchange/exchange-ps/exchange/Remove-SensitiveInformationScan.md b/exchange/exchange-ps/exchange/Remove-SensitiveInformationScan.md
@@ -14,7 +14,7 @@ ms.reviewer:
 ## SYNOPSIS
 This cmdlet is available only in Security & Compliance PowerShell. For more information, see [Security & Compliance PowerShell](https://learn.microsoft.com/powershell/exchange/scc-powershell).
 
-Use the Remove-SensitiveInformationScan cmdlet to remove sensitive information scans.
+Use the Remove-SensitiveInformationScan cmdlet to delete on-demand classification scans. You can't delete a scan if estimation or classification is in progress.
 
 For information about the parameter sets in the Syntax section below, see [Exchange cmdlet syntax](https://learn.microsoft.com/powershell/exchange/exchange-cmdlet-syntax).
 
diff --git a/exchange/exchange-ps/exchange/Remove-SensitiveInformationScanRule.md b/exchange/exchange-ps/exchange/Remove-SensitiveInformationScanRule.md
@@ -14,7 +14,7 @@ ms.reviewer:
 ## SYNOPSIS
 This cmdlet is available only in Security & Compliance PowerShell. For more information, see [Security & Compliance PowerShell](https://learn.microsoft.com/powershell/exchange/scc-powershell).
 
-Use the Remove-SensitiveInformationScanRule cmdlet to remove sensitive information scan rules.
+Use the Remove-SensitiveInformationScanRule cmdlet to delete on-demand classification scan rules. You can't delete a rule when a parent scan is in the ClassificationInProgress or ClassificationComplete state. 
 
 For information about the parameter sets in the Syntax section below, see [Exchange cmdlet syntax](https://learn.microsoft.com/powershell/exchange/exchange-cmdlet-syntax).
 
diff --git a/exchange/exchange-ps/exchange/Set-SensitiveInformationScan.md b/exchange/exchange-ps/exchange/Set-SensitiveInformationScan.md
@@ -14,7 +14,7 @@ ms.reviewer:
 ## SYNOPSIS
 This cmdlet is available only in Security & Compliance PowerShell. For more information, see [Security & Compliance PowerShell](https://learn.microsoft.com/powershell/exchange/scc-powershell).
 
-Use the Set-SensitiveInformationScan cmdlet to modify sensitive information scans.
+Use the Set-SensitiveInformationScan cmdlet to modify on-demand classification scans.
 
 For information about the parameter sets in the Syntax section below, see [Exchange cmdlet syntax](https://learn.microsoft.com/powershell/exchange/exchange-cmdlet-syntax).
 
@@ -66,10 +66,10 @@ To use this cmdlet in Security & Compliance PowerShell, you need to be assigned
 
 ### Example 1
 ```powershell
-{{ Add example code here }}
+Set-SensitiveInformationScan "SharePoint scan" -AddOneDriveLocation All -Workload OneDriveForBusiness
 ```
 
-{{ Add example description here }}
+This example updates the on-demand classification scan to also include all OneDrive accounts.
 
 ## PARAMETERS
 
@@ -100,6 +100,8 @@ The AddEndpointDLPLocation parameter specifies the user accounts to add to the l
 
 To enter multiple values, use the following syntax: `<value1>,<value2>,...<valueX>`. If the values contain spaces or otherwise require quotation marks, use the following syntax: `"<value1>","<value2>",..."<valueX>"`.
 
+A scan can't have Endpoint devices and SharePoint/OneDrive locations together in the same command.
+
 For more information about Endpoint DLP, see [Learn about Endpoint data loss prevention](https://learn.microsoft.com/purview/endpoint-dlp-learn-about).
 
 ```yaml
@@ -122,6 +124,8 @@ The AddEndpointDlpLocationException parameter specifies the user accounts to add
 
 To enter multiple values, use the following syntax: `<value1>,<value2>,...<valueX>`. If the values contain spaces or otherwise require quotation marks, use the following syntax: `"<value1>","<value2>",..."<valueX>"`.
 
+A scan can't have Endpoint devices and SharePoint/OneDrive locations together in the same command.
+
 For more information about Endpoint DLP, see [Learn about Endpoint data loss prevention](https://learn.microsoft.com/purview/endpoint-dlp-learn-about).
 
 ```yaml
@@ -425,7 +429,13 @@ Accept wildcard characters: False
 ```
 
 ### -Mode
-{{ Fill Mode Description }}
+The Mode parameter specifies the scan mode. Valid values are:
+
+- Enable: Use this value to start the scan.
+- Disable
+- TestWithNotifications
+- TestWithoutNotifications
+- PendingDeletion
 
 ```yaml
 Type: PolicyMode
@@ -671,7 +681,10 @@ Accept wildcard characters: False
 ```
 
 ### -StartImpactAssessment
-{{ Fill StartImpactAssessment Description }}
+The StartImpactAssessment parameter specifies whether to start cost estimation for on-demand classification scans. Valid values are:
+
+- $true: Start cost estimation for on-demand classification scans.
+- $false: Don't start cost estimation for on-demand classification scans.
 
 ```yaml
 Type: Boolean
@@ -687,7 +700,10 @@ Accept wildcard characters: False
 ```
 
 ### -StopImpactAssessmentAndStartClassification
-{{ Fill StopImpactAssessmentAndStartClassification Description }}
+The StopImpactAssessmentAndStartClassification specifies whether to stop cost estimation and start classification for devices where estimation completed successfully. Valid values are:
+
+- $true: Start classification for devices where estimation completed successfully.
+- $false: Don't start classification for devices where estimation completed successfully.
 
 ```yaml
 Type: Boolean
diff --git a/exchange/exchange-ps/exchange/Set-SensitiveInformationScanRule.md b/exchange/exchange-ps/exchange/Set-SensitiveInformationScanRule.md
@@ -43,10 +43,10 @@ To use this cmdlet in Security & Compliance PowerShell, you need to be assigned
 
 ### Example 1
 ```powershell
-{{ Add example code here }}
+Set-SensitiveInformationScanRule "SharePoint scan rule1" -ContentExtensionMatchesWords "pdf","docx,csv" -StartImpactAssessment $true
 ```
 
-{{ Add example description here }}
+This example updates the on-demand classification scan to classify pdf, docx and csv file types.
 
 ## PARAMETERS
 
@@ -287,5 +287,7 @@ This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable
 ## OUTPUTS
 
 ## NOTES
+- You can't modify rules in the ClassificationInProgress and ClassificationComplete states.
+- You need to use the StartImpactAssessment parameter with the value $true to restart estimation. Otherwise, the scan remains in the ImpactAssessmentRequired state.
 
 ## RELATED LINKS
