Restricting end-users from releasing quarantined emails
I think giving end-users the ability to see whats in their quarantine but not being able to release them would be a massive security improvement as the administrator cannot monitor all emails within the host quarantine and we cannot trust end-users to know what to release
Thabet Muhsen commented
How would Microsoft give end users the ability to release phishing & malware be default, anyone can open https://protection.office.com/quarantine and release anything!!!!!!!!!!!!!!
Renuka Devi commented
I too agree, Direct release option to end-users is not advisable & since on curiosity and they may release all such mails and they will not be aware too. Such, releasing may intern lead to security risks.
Do address this issue ASAP & only notification to end-users will be enough and mail releasing needs to be done by Admin upon request from end-user.
I agreed with this feature.
I agree this should be configurable by the Office 365 Administrator. We cannot enable the Anti-Spam end-user notifications setting until this is fixed. Further, I would like a Quarantine Viewer/Reviewer role in addition to the Quarantine Administrator, so that our Help Desk can review the quarantine to confirm that the email is actually in the quarantine before sending a ticket to the Office 365 Administrator to release it.
Frank McGovern commented
This needs to be implemented as a toggable option. Either on/off/admin approval. Let orgs decide. A lot of us absolutely do not trust some of our end users that may just go in daily and release everything. All it takes is one phishing email to own an organization. Why would you let end users circumvent security controls with no admin permission to do so?
Agreed, users should not be able to release dangerous mails without admin consent.
João Barrambana commented
There should be an option to disable end users from releasing any email from quarantine by themselves and always request it from an admin.
This feature is a must have for ATP.
Please implement it asap.
This is a lack of security, regarding all attacks we are facing everyday, we have over 40000 users, we cannot trust the users to do the best choice, for user business/billing come first, but if the messaging service falls down because of an attack, we will not have business at all.
Thank you to give admin the capabilities to disable this feature, or at least with read only mode for end users.
Moreover we intend to allow this feature and configure end-user spam notification, we cannot personalyze the language regarding the the region of user.
In a corporate environment users should request the administrator to release the quarantined emails.
Lack of corporate security.......
Please provide the function to disable as soon as.
Douglas Morris commented
This would be amazingly helpful, please do this.
In corporate environment O365 users should request the email administrator to release the quarantined emails.
Completely agree with Craig. End-user should make a request to the administrator to release the emails quarantined and we would like to see this feature ASAP.
Bill Broom commented
Agree with Craig. We would use the facility if there was an option to ONLY send the report and NOT allow the account holder to release the messages. And I agree with Cameron, an oversight perhaps with the pace things are moving, but something which an enterprise service should be offering.
Cameron Murdoch commented
its truly silly that this isn't the standard in enterprise mail solutions
is there any update on this?
thanks in advance
Martin Campbell commented
I agree, thats exactly what we need. If MS do not update to allow this then I may have to look at a third party solution like Trend Micro Hosted Email Security where this is possible.