Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

How can we improve compliance or protect your users better in Office 365?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. OneDrive for Business unable to perform delete folder directly caused by Retention Policy

    Dear Microsoft,

    OneDrive for Business is one of the useful tools for cloud storage whereby end user should be able to folders (even got files inside) easily even being applied with retention policy.

    Retention policy is suppose used on backend which not suppose to affect on OneDrive for Business usage. We are have 500 users getting impact on this. (and i assume all users having this issue as Microsoft support tested having this issue - "behaviour")

    I was informed by Microsoft that this is by default preservation policy design behaviour, which I think this is not consider design behavior anymore…

    341 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    26 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  2. Preservation Lock enable and disable with special permission or at least with Microsoft Support.

    Preservation Lock can be set so easily that if you click on the policy on the right it will give you the option of on and Off resulting in a lock that even Support can not remove. Either provide a secure way of enabling disabling to the user or at least give it to Microsoft Support to do it on Client's behalf.

    169 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    16 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  3. Provide litigation hold for OneDrive for Business sites

    After OneDrive for Business is deployed , users don't send attachments over mail. This means most of the documents will reside in onedrive and shared between users as co-authoring is possible. This creates a need to have a litigation hold on the document to identify what all changes happened to the document and who made these changes. This is a huge challenge even faced by even Audit firms which moved to O365. Would appreciate if Litigation hold capabilities are made available for ODFB.

    148 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  4. New function proporsal : Coping eDiscovery result to Discovery mailbox operation from S/C center.

    Operations from sc center that Copy eDiscovery search results to a discovery mailbox would be very useful.

    This operation is available only in Exchange Management Center.
    but we want to implement this operation in SC center too. Please consider this function.

    132 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  5. Option to preserve contents of SharePoint recycle bins when a site is placed on hold

    Currently when a SharePoint site / OneDrive for Business is placed on hold items already in the recycle bins (site and site collection) are not preserved. Since the content of recycle bins can be technically recovered legal teams have advised that the contents of recycle bins needs to be preserved.

    This would also be consistent with Exchange Online where an in place hold does preserve the contents for the Dumpster.

    116 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  6. Prevent users from bypassing in-place hold for OneDrive for Business

    In Place Holds in SharePoint Online use the search function to identify items that are on hold. Users have the possibility to disable search for their OneDrive for Business:
    Select Site Settings -> Site Libraries and Lists, then select the Documents Library, select Advanced Settings, set Allow items from this document library to appear in search results = No

    Testing shows that disabling search bypasses litigation hold allowing users to delete items without preservation.

    Users should not be able to bypass in-place holds. A possible solution would be to prevent users from disabling search when their OneDrive is placed on…

    113 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  7. Implement sensitive data ediscovery searches in Exchange Online

    Sensitive data searches for ediscovery currently work only in Sharepoint and One Drive. It also works for DLP in Exchange. This lack severely limits the usefulness of eDiscovery in Security and Compliance for Office 365.

    95 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  8. Ability to perform eDiscovery collections for specific Outlook Folders

    I have a requirement from a large customer (85K users) that needs to be able to perform eDiscovery collections for specific Outlook folders. We can do date range and Full Mbx collections, but not specific folders. This was possible on-premises, but not in Exchange Online ????

    87 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  9. Create Content searches based on message ID, Time, and null/blank subjects.

    Employee's send out emails with no subjects all the time, however I am unable to add a null/blank subject as a condition in content search.

    I am also unable to content search or filter based off of message ID.

    There is also no time option, only date, as a search condition.

    This makes content searching for an email with no subject a huge pain.

    Please add the ability to create content searches based off of blank/null subjects, sent time between X and Y, and based off of message ID in the mail headers as an option.

    70 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  10. delete content from content search through gui not using New-ComplianceSearchAction

    Currently users with the ediscovery role can run search for content and download that content. Using the New-ComplianceSearchAction -purge -softdelete you can delete this content (which we use for deleting spam or malware emails out of mailboxes). We do not want our security operations team to use powershell to complete these deletes so we have to write a gui to provide this functionality. Please enable the ability to complete deletes within the SCC itself

    68 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  11. Option to use default folder structure for eDiscovery PST Export

    I recently learned that the one of the only ways to move mailboxes from one tenant to another is to use the eDiscovery PST export tool and the PST Import tool. The problem is that the eDiscovery PST export tool places the default folders inside a folder called "Primary Mailbox". When this PST is imported into the new mailbox, all folders are placed inside this "Primary Mailbox" folder rather than being merged into the default folders. We had to manually move all folders to the root of the PST before importing the PST into the new mailbox. It would have…

    60 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  12. OneDrive Content search across Geos

    Currently, performing a content search of OneDrives across a multi-geo environment isn't possible, it only searches the default Geo, not satellite Geos. If you create a security compliance filter targeted at your satellite geo and put the eDiscovery person in the role, then they can search that satellite geo. Please update oneDrive content search to search across geos the same way that an Exchange mailbox search works, without requiring adding/removing them from security compliance filters. (This workaround was the result of working with Microsoft Premier support, so it's legit.)

    51 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  13. eDiscovery Administrator should be able to restrict users/eDiscovery Managers to limit mailbox search

    Currently eDiscovery Manager role have full access to run the search in all mailboxes in the organization. This is allows them to access to any users mailbox in the organization.

    There should be an option to limit/control the mailbox search. Administrator should be able to define on what mailbox a particular eDiscovery Manager can run the search.

    45 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  14. Provide a mechanism which allows a programatic way to download exports in Compliance Center

    Provide a mechanism to programmatically download the eDiscovery exports in Azure back to on-premise. Powershell cmdlets or command line parameters to existing eDiscovery download tool would suffice.

    42 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  15. Legal Hold Email Notification

    The new Security and Compliance Center (SnCC) eDiscovery is nice, and certainly a move in the right direction.

    I would like to suggest adding a feature to SnCC eDiscovery cases where case admins can craft and send Legal Hold Notifications to case custodians. Notifications can be created from scratch or from templates. These notification emails are sent to recipients to draw their attention and request action regarding the case Legal Hold. Emails should have options to acknowledge the hold which can be tracked with audit trail reporting. There should be options to send reminders, escalation requests, and hold reissues.

    With…

    37 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  16. Redaction and PDF Export

    Give the ability to review, remove, redact, and export to PDF all emails that are found in a discovery search to include the ability to convert and export attachments as PDF as well.

    30 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  17. Retention Policy - SharePoint site exclusion - Site Admin permissions required

    When trying to exclude a SharePoint site from a retention policy in the new unified retention policy section, you have to be an admin of the SharePoint site. If you are not a site admin, when you try to FIND the site so it can be selected, it returns no site found. Support have verified this is not a bug and is the way this works at the moment, but for a company which is only giving access to sites to people who need it, this behaviour needs changing so that a O365 Global Admin/SharePoint Admin can lookup sites.

    29 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  18. Keyword Query Limit needs Increase

    A keyword limit of 20 terms has recently been instituted in the Compliance Center eDiscovery searches. This limit is far too low and should be returned to an unlimited number of keywords (or at least a much higher limit like 100 keywords). This is negatively impacting the ability to do more complex searches in the Compliance Center.

    28 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add ability for compliance searches to search hyperlink URL and display text

    Add ability for compliance searches to search hyperlink URL and display text while supporting the existing wildcard structure available to other attributes like subject and body.

    The new functionality could either be in a new attribute, or joined into the body attribute since the links would be in the body of the email.

    23 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  20. Ediscovery member permissions so users could edit the search query on the case but could not add another mailbox for search.

    Ediscovery is a very powerful and useful solution that is available for everyone. It can hold mailboxes of leavers and this way we can preserve the licenses, however a big problem arises when someone needs access to a leavers mailbox. After giving user permission to preview you have to add him to a security group "compliance search" which gives the user access to add any mailbox "active or inactive", it is a big security implication so the service is useless for the end user and therefore we would have to process every single request when they need to access the…

    23 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6 7
  • Don't see your idea?

Feedback and Knowledge Base