Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Need to fetch report of outbound spam report which contains mails only delivered from HRDP (High Risk Delivery Pool)

    We had received outbound spam mails report, and there we have found all mails of outbound spam mail, but we want to filter those mails which only delivered from HRDP (High Risk Delivery Pool).

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  2. Defender ATP Columns for machine lists view

    if we can add the columns for most logged in user and last logged in user, this will make the tool even better when we pull a report for looking for a compromised end user quickly.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  3. Secure score - subjects that doesn't account in your orgs environment

    Would be great if the secure score would be so interactive that it would take hight for the conditions in the tenant. For example if the tenant is cloud only, why is there still a score to enabled password hash sync in the tenant

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  4. Secure Score - Doesn't take in account for CA policies

    The secure that rules if you have enabled MFA in you organization doesn't take account for if you are utilzing MFA via CA. Please score after this

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  5. To be able to generate/export an Executive Report for Clean, Spam, Phishing and Malware Emails

    To be able to generate/export an Executive Report for Clean, Spam, Phishing and Malware Emails

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  6. Report all attachments scanned by Advanced Threat Protection Safe Attachments

    Currently reporting for Safe Attachments only shows malicious files. This makes it difficult to verify that Safe Attachment scanning is working as intended. It would be beneficial to be able to verify in a report detail regarding all attachments that have been scanned and marked as safe.

    This idea stems from a situation were Advanced Threat Protection was not scanning attachments for a tenant despite being configured to do so. Without checking through message traces or verifying with end users it was not possible to verify if it was working or not. The issue was further complicated as the reporting…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  7. Alert Excessive User Messages

    It is known with Exchange Online when a user sends excessive emails that their account will be blocked to prevent blacklisting. However there are no reports available for administrators to see this prior to the incident, Need a report option that as admins we can set a criteria on the number of emails sent from a mailbox prior to reaching the quota created by Microsoft. For example, more than 50 emails in 5 minutes, an alert would be triggered sending an email to an administrator.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  8. Specify the applied entity in the "Activity Map" on the Cloud App Security dashboard

    "Activity" on the world map might indicate "activities" as defined in the other reports on the dashboard about user activity. However it seems that the applied entity in the "Activity map" is defined as "active users with any number of activities (including any number of logins) during the specified time interval".
    A clarification about the definition and applied entity on the "Activity map" as well as in the documentation would be helpful and appreciated.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  9. Email reporting of Mailbox Usage Report

    We require the ability to have a weekly (or daily) report emailed to a chosen Administrator / user that gives a breakdown of Mailbox Usage (Storage Used / Quota Status / Issue Warning Quota / Prohibit Sent Quota / Prohibit Sent / Receive Quota)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  10. The captcha of portal https://sender.office.com/ not working !

    The captcha of portal https://sender.office.com/ not working !
    the captcha is almost illegible and always answers that it is wrong.
    maybe you do it on purpose?

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  11. allow send report email to distribution groups instead of individual users.

    Reports in Security and Compliance portal can be sent to individual users only. Distribution groups cannot be selected as recipients. Using groups would be a much easier solution for all admins

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  12. Get-User does not show default authentication policy

    When you set an exchange default authentication policy the default authentication policy is assigned to all users who don't already have a specific policy assigned to them. However when you query Get-User their policy is null. It should show (default) so admins know if a user has a policy set.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  13. Status of exporting search results

    Exporting search results from the Security & Compliance Center has the following limits:
    - You can export a maximum of 2 TB of data from a single Content Search.
    - Your organization can export a maximum of 2 TB of data during a single day.
    - You can have a maximum of 10 exports running at the same time within your organization.
    -A single user can run a maximum of three exports at the same time.
    https://docs.microsoft.com/en-us/office365/securitycompliance/export-search-results#export-limits

    It's convenient if we can get the status of exporting search results.
    ex. the number of running export request
    the size of exported…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  14. License report

    Create license reports per O365 subscription. example: E1, E3, Project Online, Visio, Power BI, E5, etc? with end user login, UPN, Country, purchase date, last usage date.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  15. I would like to use activity report to retrieve activities which performed in OneDrive for Business

    It would be great if ODfB activity report can retrieve activities which specifically performed in ODfB because, the report always includes ODfB related activities which has been done in Microsoft Teams as well; such as file sharing.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  16. Retrieve the number of activities performed in SPO only

    I would like to retrieve the accurate number of activities which performed on SPO; because current activity report for SPO includes file sharing activities which operated in Microsoft Teams as well.
    I would like to see the activity counts in SPO only.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  17. More information on Impossible Travel email for end user

    We get the impossible travel alert triggered a lot as many of our people use a VPN for security as they travel a lot. This is great as sometimes it really is a legitimate attack on their account. So as part of this, in case we miss one, i have set the alert up to also email the end user in question so they can let us know if we need to investigate it further or not.

    I had one of the emails forwarded to me today and there is absolutely nothing useful on it. Is there anyway we can…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  18. Make the Exchange email activity report to obtain specific data

    I would like the Exchange email activity report to output data including earlier than 180 days, also I would like to list activities taken within JST time zone and other time zone separately.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  19. Generic guest link report

    Ability to create a report that details every generic guest link created, including creation date and the person who created it. This is important to my organization because we want to disable guest links going forward, need to contact users who created them and give them a drop-dead date to replace them. Finally, we would need a means to delete the guest links.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow admins to export the findings from all O365 Security Centre Dashboard Reports (including associated user names) so they can be tracked

    Currently, there is no ability to export the associated user names from ANY of the security dashboards on O365 Security Center.

    If your development team can take this feedback and add that feature, that will be very helpful.

    The reason is that unless I am able to export the names of users involved in any potential security finding (such as users having SMPT auth, users with malware detected, users targeted with fishing attacks etc.), it is difficult to track the remediation, follow up conversation etc. for those cases.

    Hence I request – ALL the dashboards on O365 should have the…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6
  • Don't see your idea?

Feedback and Knowledge Base