Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Need that Cortana connect to O365 work, i device have a securtiy baseline from Intune. See REG:118022317698163

    See REG:118022317698163: Cortana did not work, if device have a Security baseline and Compliance check from Intune

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  2. retention permanently delete

    Allow deletion policy to permanently delete files instead of going to recycle bin. The old Compliance Center in SharePoint Online had this option but it is not in the O365 version. This is a requirement for legal compliance.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  3. Org-Wide report on Forms

    We would like an Org-Wide report of all the questions asked using Microsoft Forms.
    A mechanism for our Information Compliance Unit to monitor any potential breach questions, which might lead to answers providing 'personal, sensitive or confidential' data.

    Ideally a list of all questions should be produced showing user, form name and the question.

    I see this as a compliance centre report, or Azure function perhaps?

    Many thanks

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  4. Provide the ability to call a Microsoft Flow in a Retention Label in Security and Compliance Center similar to an IRM policy in a library.

    When configuring a retention label in security and compliance center a Microsoft Flow should be an option to execute when executed. Similar functionality exists in Information Rights Management in a document library that can call a SharePoint designer workflow. Flow should be integrated into SCC to accommodate custom actions.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  5. メールが有効なセキュリティ グループを電子情報開示管理者のサブグループに追加

    セキュリティ/コンプライアンス センターの PowerShell で Add-RoleGroupMember コマンドレットを使用して、メールが有効なセキュリティ グループを電子情報開示管理者のサブグループのメンバーとして、電子情報開示管理者の役割グループに追加できます。 ただし、メールが有効なセキュリティ グループを電子情報開示管理者のサブグループに追加することはできませんとなっていますが、メールが有効なセキュリティグループも追加できるようにしていただきたいです。

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  6. O365 security compliance alert policy should be added with feature to configure alert when forwarding mail to external domain

    O365 security compliance alert policy should be added with feature to configure alert when forwarding mail to external domain

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  7. Enable content logging for Teams

    We are a healthcare shop, and as such need to comply with HIPAA regulations as well as industry specific regulations, such as HiTrust. As part of that, we have to enforce centralized logging and content management for any IM/collaboration tools for auditing and DLP issues.

    I have been told that the current feature set of the product does not support this because those conversations are deemed confidential/personal. However, being that we are a healthcare shop with high security concerns, company services have no reasonable expectation of privacy.

    So I would like this to be added as a feature, as well…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  8. provide a way to check retention tag status from user's mailbox via admin portal and via power shell for retention reporting and monitoring

    When corporate user mailboxes are assigned retention policies, administrator should have ways to know if user's folder have personal tag or not, to understand how user protect their data.And a power shell command for checking retention tag on specific folder would be necessary.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  9. file tipe

    En la retención de OneDrive poder buscar por tipo de archivo no solo por palabras claves

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  10. No SharePoint UI notification when attempting to delete a site under a retention policy

    When attempting to delete a SharePoint site that is currently under a Retention Policy to keep it. There is no notification in the UI that informs the user that the site cannot be deleted, or that its part of a retention policy. (Modern Experience) Attempts to delete a site via PowerShell result in an error message, but the SP UI moves on as though the site were deleted.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  11. Include definitions for Eco Manager's Certification Scope columns

    Include definitions that describe what each column refers to, e.g., what are Certification Dependencies and how do they relate to Office365 and CRM.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  12. Customization option for the Justification pop-up

    We are using Azure Information Protection Unified labeling in our tenant. We have enabled the feature "User must provide justification to remove a label or lower classification label" under a Label policy. However the requirement is to have a pop up message asking for a simple message like "are you sure to downgrade the label of this email/document?" when a user is downgrading a label and this activity will be reported to DLP team/manager if user said yes rather than pop up to capture Justification with the options "Previous label no longer applies, Previous label was incorrect and others (explain).".…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  13. Support PIM Roles

    Transition management of S&C access/roles based on Azure PIM roles to better support access management and auditing.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  14. is there a regulatory compliance and auditing report reference for educational customers

    is there a regulatory compliance and auditing report reference for educational customers

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  15. ContentType

    There are content types Audit.General, Audit.SharePoint, Audit.Exchange, Audit.AzureActiveDirectory and DLP.All but did'nt find content type returning data for "Security And Compliance Centre".So i think this should be added to microsoft doc.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  16. Office Online Archive - Set exemption for Calendar, Tasks, Flagged item

    Once you enable online archive for user mailbox, all items (mails, tasks, calendar, flagged mails, Notes) in mailbox are getting moved to online archive. Once Task, Calendar or flagged items are moved to Online Archive, it doesn't appear in to do list/bar or User doesn't receive any reminder for such tasks.
    Pl provide a filter while creating Archiving policy to exclude such items. If we can apply such a policy to specific users that would be great.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  17. O365 logs shows multiple login entries within a minute. Would could be the reason for such a Behavior

    O365 logs shows multiple login entries within a minute. Would could be the reason for such a Behavior

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  18. Microsoft 365 NIST 800-171 Assessment in Compliance Manager

    Can you add the NIST 800-171 assessment in Compliance Manager for the product Microsoft 365?

    Right now the product list only includes: Azure, Azure Government, Dynamics, Office 365 and Professional Services. No M365 :(

    Thanks!

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  19. Provide Informational Popup indicating that it's not possible to upload a new APN Certificate when one is already installed.

    Please provide Informational Popup indicating that it's not possible to upload a new APN Certificate when one is already installed. As is, nothing happens when clicking the upload button after browsing and selecting the APN Certificate which led me to believe there was an issue with the "Install Apple Push Notification Certificate" wizard.

    Rather than reinstalling the APN, all I had to do was Renew the currently installed APN on the Apple Push Certificates Portal.

    Had there been a pop-up indicating that an APN already exists, I would've save myself and MS Support team sometime.

    Thanks!

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  20. Fix Supervision add-in (Supervisory Review v2) for Webmail

    The Supervisory add in within webmail is broken since the latest updates were done. The add-in was a really good feature that allowed compliance admins to perform supervision via webmail in case there are more then one supervision rules. The outlook version doesn't work better then the webmail version as it requires to create a new profile per supervision rule. Doesnt suit in case an organization has many supervision rules. Would really hope if this could be fixed soon.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base