Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Creation of forwarding/redirect rule

    So last night this rule triggered for the first time, wasn't really aware of it in the first place.

    Severity:● Low

    Time:6/13/2018 10:00:00 PM (UTC)

    Activity:MailRedirect

    User:person@email.com

    Details: MailRedirect. This alert is triggered whenever someone gets access to read your user's email.

    Description: This alert is triggered when someone in your organization creates an email forwarding or redirect inbox rules using Outlook web app or Powershell -V1.0.0.2

    Now to me this is an incredibly frightening message to receive, since this person has access to extremely sensitive financial information. So since I was thinking this person had been compromised, I…

    134 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    17 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  2. Secure Score - MFA with conditional access is not counted

    Secure Score - MFA with conditional access is not counted.
    The system recognizes only full MFA while it was set as encofrece

    75 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  3. include changes in journal rules as an activity alert in the Security and Compliance center

    Please consider adding changes in Journal Rules (Exchange) as an activity for alert in the Security and Compliance center. We have many customers who would find value in this.

    57 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    13 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  4. Access and Release quarantine messages of shared mailboxes that end-users belong to

    Access and Release quarantine messages of shared mailboxes that end-users belong to.

    This will enable Self-Service capabilities that Protection.Office.com currently provides to own mailboxes.

    Its useful for users having full access to the Shared mailbox to be able to manage their quarantine as well.

    With notifications Off, this is a useful feature.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  5. need notification in retention policy when it applying to Exchange online mailboxes without required license

    According to the official article, to include an Exchange Online mailbox in a retention policy created at Security & Compliance Center, the mailbox must be assigned an Exchange Online Plan 2 license. If a mailbox is assigned an Exchange Online Plan 1 license, you would have to assign it a separate Exchange Online Archiving license to include it in a retention policy. However, when create the retention policy, there is no such warning or notification to alert customers that the policy may not apply to certain mailboxes. It will cause customers' data lost because they may expecting the policy will…

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  6. Reporting a popup to let colleagues know when their Office Client doesn't meet the O365 dependencies/Security patch requirements

    At this time when a colleague tries to connect to a document located in SharePoint, they just receive a blank copy of the spreadsheet, this happens after they have inputted their login information, (this action repeats) we have discovered that this was due to a cumulative update that was waiting in the their Software centre, after downloading the update manually and rebooting the machine the user was able to open the document since the authentication path wasn't blocked due to the necessary patch being applied. My view on this would be" have a Microsoft PopUp appear letting the client know…

    44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  7. The ability to turn off or disable the quarantine filter.

    I utilize AppRiver to Filter my Mail
    I see no reason that I cannot disable this even through a transport rule.
    We need the ability to turn off this filtering.
    Otherwise, I am maintaining two email filters which are double the effort.

    Please and thank you !

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  8. New Zealand (NZ) Sensitive Information

    Add NZ Sensitive Information to the Sensitive Label template - e.g. Drivers Licence, Passport No, Bank Account No, IRD Number, etc.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  9. Increase the New-ComplianceSearchAction job purge limit

    Please Increase the New-ComplianceSearchAction job purge limit from default valu 4 to 10 or more. This really limit our daily Phishing mail deletion ability.

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  10. Support 'guest users' as collaborators on Cases.

    Support 'guest users' as collaborators on Cases.

    It seems like a defect that guest users are not currently supported as collaborators.

    In a support case I was told: 'As we have discussed it is by design that we can not assign a guest user as e-discovery manager'.

    If this is the case, then the design is flawed: While it is possible to assign a Guest AD User as a collaborator on a Case. It then does not work - they are not granted access. They can login to Security and Compliance center, but unable to view assigned Case.

    Please fix…

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  11. DoD Cybersecurity Maturity Model Certification (CMMC)

    DoD is creating security controls for the Cybersecurity Maturity Model Certification, a certification that all federal contractor companies must obtain in the very near future. It will be nice to have the CMMC compliance requirements added as an assessment template.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add custom Compliance Frameworks to Compliance Manager

    It would be great to develop Compliance Manager to allow for the creation and development of custom compliance frameworks that can be measured within the tool, weather this be based on 365 metrics or external inputs.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  13. Creation of forwarding/redirect rule alert: improve visibility of address forwarded to

    When an alert is triggered because of the Creation of forwarding/redirect rule policy, finding the address that is being forwarded to is very tedious compared to how important this information is. It is also drowned by all the information around it despite it being the second most important element to decide if the alert should be investigated further or dismissed.

    The current route is:
    1) Click on "view alert details" in the e-mail notification / on the alert in the alert list of the S&C center
    2) In the alert, click on "view activity list"
    3) In the activity list,…

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  14. Reduce the amount of time needed to view the activity list in an alert

    It takes at least an hour before I can see the data in an activity list of an alert.
    In a redirect/forward creation rule alert, the details in the activity list are very important when you need to ***** the potential security risk. And you want to be able to do it immediately and not to wait an hour for it.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  15. localize Compliance Manager

    All pages are in English. Does it possible to find them without using translations in French, Dutch, German, etc.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  16. Provide than ability to purge more than 10 items at a time.

    I need to purge over 10000 items for PCI compliance and do not want to have to run the purge 100's of times to accomplish this.

    Thanks,

    Scott

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to delete messages through the UI In the Security and Compliance Center

    Under Search and Investigation for Content Searches we would like the Ability to delete messages through the UI in the Security and Compliance Center. Currently you have to create a content search task and then call that task through PowerShell to remove messages. We get spammed a lot and would like the ability to Mass-Remove a Malicious message quickly and easily.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  18. O365 security compliance alert policy should be added with feature to configure alert when forwarding mail to external domain

    O365 security compliance alert policy should be added with feature to configure alert when forwarding mail to external domain

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  19. Improve Accuracy of Default Unusual External User File Activity Alert

    These alerts are supposed to be based on machine learning but MS Support has confirmed they are based on simple threshold settings. Considering acceptable actions like syncing a OneNote site notebook, performing quick edit on library metadata, or bulk dragging/dropping docs into a library, will trigger this alert... then the alert is useless.

    "Unusual" file activity by an external user should include one-time attempts to access system pages such as the permissions page (/_layouts/15/user.aspx)… as well as machine-learning-based adaptive thresholds which adjust to the typical behavior of our invited external users (of whom we have a lot, resulting in tons…

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  20. Include Category in meeting request

    When working with a team, where everyone shares the same categories in their (work-)calendars, it would be tremendously useful to share the category of a meeting request with everyone invited to that meeting.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5
  • Don't see your idea?

Feedback and Knowledge Base