Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Takeover of the label after a Word to PDF conversion

    After a Word > PDF conversion, the label is not visible in the PDF. The PDF has to be classified afterwards. It would be great if the label was taken over after the conversion.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Antispam Inconsistent & Score Visibility

    Microsoft antispam inconsistent filtering is inconsistent. I've had several occurrences over the last few months where the exact same email is sent to a group of users. Some email get caught and go to quarantine and others go through as Not Spam.

    In troubleshooting with Microsoft, the first occurrence could not find any difference. In the second occurrence, Microsoft said that it was most likely the Source IP address was blocked for one message and not for the other address. OR it had to do with what email server received the email at Microsoft but was on a different anti-spam…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  3. Connect Resolved Threat Investigations with Incidents in Microsoft 365 Security

    I would like that Resolved Threat Investigations in "Office 365 Security and Compliance" are synchronized with security.microsoft.com incidents so that, when the investigation is resolved or terminated, the corresponding incident in security.microsoft.com is automatically resolved / closed.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  4. docker

    Currently Cloud App Security only offers docker instances for On Premise Linux and Windows as well as Azure Linux. It would be nice to have an option to use a Container Instance instead of having to stand up IaaS to support this.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow content with Sensitivity labels using encryption stored in OneDrive to be discovered in eDiscovery searches

    The current tooling for eDiscovery does not allow for content protected with sensitivity labels to be discovered using eDiscovery.

    If MS’s eDiscovery tools cannot even see the documents, organizations would not be able to comply with any litigation hold obligations and discovery collection obligations. All/Most companies would face sanctions if it didn’t comply with preservation obligations and obligations to collect the documents and provide them to the other side as part of the litigation process.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  6. Export all url as CSV

    Dear,
    Please move this idea under right subject, if i crete wrong place.
    I'm a secuirt/ firewall, url filtering etc admin.
    I'm defining urls for office 365 license, apps and another.
    Please check this address.
    https://docs.microsoft.com/en-us/office365/enterprise/urls-and-ip-address-ranges

    It is very difficult to copy addresses one by one. We need csv import option here. Thus, it will be much easier to import.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. alerte par sms incident Microsoft

    Recevoir par SMS les alertes incident Microsoft 0365

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Quarantined files on Classic OneDrive, Sharepoint cannot be downloaded and can be shared, moved or copied

    We can't download quarantined files on Classic OneDrive, Sharepoint, but we can share, move and copy.

    We have an organization that allows the file to be downloaded.

    https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/turn-on-atp-for-spo-odb-and-teams?view=o365-worldwide

    Setting the parameter to false blocks all actions except Delete and Download. People can choose to accept the risk and download a detected file

    We also believe that quarantined files cannot be shared, moved or copied.

    Is it possible to modify the function?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide ability to conduct an Audit on permission changes in a SharePoint list. ie I want to know who has changed permissions on a SP list.

    Provide ability to conduct an Audit on permission changes in a SharePoint 365 list. ie I want to know who has changed permissions on a specific SharePoint list. Audit log search does not allow for this.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  10. Unable to download quarantined files on Teams

    We are unable to download files quarantined by O365ATP on Teams.

    We have an organization that allows the file to be downloaded.

    https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/turn-on-atp-for-spo-odb-and-teams?view=o365-worldwide

    Setting the parameter to false blocks all actions except Delete and Download. People can choose to accept the risk and download a detected file

    Is it possible to modify the function?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  11. Not sure

    Normally they are ****

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. dhiod,frlc,ndn

    sjd,gmcfmvdmcvmnfxb v

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  13. Allow anyone with direct full access, or full access by group, to a shared mailbox to review its quarantine list emails.

    Allow anyone with direct full access, or full access by group, to a shared mailbox to review its quarantine list emails.

    We do security via groups to ease and make efficient security administration. The feature rolled out in May 2020 limits requires direct full access and then only allows to review one quarantined email at a time. Though an improvement, this needs to be improved further.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Better information about source/system in OTP-sms:es and authenticator requests

    Make it visible what system/source/purpose an OTP SMS or authenticator request is concerning.

    The current solution does not state more than the source "Microsoft" and the OTP. It becomes hard to verify that the purpose of the OTP is legitimate.

    As a reference you could look into Swedish Mobile Bank-ID where the name of the company or organization requesting verification is displayed as part of the request.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Transport rule for Alerts

    It would be better if there's a separate transport rule for Alerts.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add the ability to display company logo on Legal Hold Memos

    Currently any attempt to include a logo gif, jpeg, png file on Legal Hold Notifications results in an error, "The linked image cannot be displayed. The file may have been moved, renamed, or deleted. Verify that the link points to the correct file and location.” Supporting this ability would make customizing legal hold memos in organizations with multiple brands simpler.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  17. Add more Dynamic Tags to the Legal Hold Communications tab.

    Currently there are only 5 dynamic tags: Display Name (for the custodian), Acknowledgement Link, Portal Link, Issuing Officer Email, and Issuing Date. Add more please! Suggestions would be: Issuing Officer's Name (in first last format), Issuing Officer's Title, Legal Hold Title.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  18. Change the Display Name dynamic tag to first name first and last name last for Legal Hold Communications

    Currently the Display name is last name first. This looks bizarre on a legal hold memo.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  19. Make the sending of a Reissue notice optional instead of automatic when portal content is edited.

    In the Advanced e-Discovery module the system is set to automatically send a reissue notice when the portal content is edited. This means the portal content has to be completely edited and ready for viewing in one sitting. That isn't realistic for a complicated hold memo. Sending a reissue notice should always be an option.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  20. Provide an app for mobile follow-up of ATP alerts

    It would be good to have an app which can display the overview of all alerts. (Like it's being gathered in the security.microsoft.com)
    This makes it easier to know when you have to take action and open the portals when your on duty during evenings/weekends, or when you're on the road.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 106 107
  • Don't see your idea?

Feedback and Knowledge Base