Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Change the content of publicly available information (link below) to fully describe operations

    *English follows Japanese
    ■Title(件名):
    公開情報内の記載を、具体的な動作を確認できるように修正をしてほしい。
    Change the content of publicly available information (link below) to fully describe operations


    ■Description(内容):
    ファイルをプレビュー表示した場合、監査ログでは、[ファイルがアクセスされました] アクティビティにログが出力されるが、以下の公開情報では、プレビューがログに記録されることを読み取ることができる記載になっていない。

    [コンプライアンス センターで監査ログを検索する (https://docs.microsoft.com/ja-jp/microsoft-365/compliance/search-the-audit-log-in-security-and-compliance?view=o365-worldwide#file-and-page-activities)]

    具体的な動作を確認できるように修正をしてほしい。
    また、すべての公開情報で同様に具体的な動作を明確に記載するようにしてほしい。

    When previewing a file, the “File accessed” activity is recorded in the logs, but according to the following documentation, there is no mention of previewing files being visible in logs:

    “Search the audit log in the compliance center”:
    https://docs.microsoft.com/en-us/microsoft-365/compliance/search-the-audit-log-in-security-and-compliance?view=o365-worldwide#file-and-page-activities

    Please change this so it gives concrete and correct information.
    Please also do this for all documentation.

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  2. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Sensitivity label in Teams, SharePoint, OneDrive

    Hello,
    Now when we can apply the Sensitivity label in a container for SharePoint, Teams, OneDrive, it would be good to add Reporting, at least report per site which sites do have the label applied, label ID, and which sites don't have.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Safelinks doesn’t really block the URL

    Even if the original web page link is blocked, people can access the source page by coping the URL on the ATP Safelinks block warning page. This action should be blocked at least on the Edge Chromium browser.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Remove internal email domain in communication compliance

    When we check emails on communication compliance, we need to check emails sent to/received from external.
    However there is no function to remove emails communicating with internal(Filter function is not enough because we need to check all external domain)
    We would like to have a function to remove internal email quickly.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Communication Compliance  ·  Flag idea as inappropriate…  ·  Admin →
  6. Support To Create Custom Sensitive Info Types Based On Custom File Extension

    We would like to use M365 E5 DLP to block certain types of files from being shared externally. These are non-standard file types that contain source code. We need to prevent these files from being shared externally. Please provide the ability for DLP to block external sharing of files based on custom file type extension, for example if file extension is *.sss do not allow external sharing.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. ATP Scanning breaks SMIME signatures

    ATP scanning adds a ATPFile_[GUID].token attachment to SMIME signed messages. This invalidates the signature in Outlook and OWA.

    Outlook Version 2011, Build 13426.20332 (Click to Run)

    See screenshots: https://imgur.com/a/f6BjNv7

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  8. Retrieve and review Teams voice mails via Advanced eDiscovery

    Teams voice mails, and their transcription, are delivered to the users mailbox as MP3 and thus archived.

    When using Advanced eDiscovery, the voice mail can be searched and found using the Search tool, but when adding to a Review set you get a metadata error. Neither the transcription or the MP3 is retrievable.

    When using Core eDiscovery you can see the transcription but not listen to the MP3. You can however download the entire message, which includes the MP3 and listen to it outside of the ediscovery tool.

    At the minimum advanced ediscovery should mirror core ediscovery and allow for…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  9. content search

    Allow the discovery tool to communicate with defender on the users pc to allow searching for content keywords in documents and files not saved in folders synced to sharepoint or onedrive.

    For instance a bad employee can be saving documents under C:\MyWork\ that have keywords we are looking for.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  10. Privileged access management in security and compliance

    We need privileged access management for e-discovery and other sensitive features of security and compliance in Office 365. All compliance permission roles should have privileged access management.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  11. ediscovery

    We need privileged access management for e-discovery and other sensitive features of security and compliance in Office 365. All compliance permission roles should have privileged access management.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  12. 3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  13. jimenezcuerow@gmail.com

    Wilber jimenez cuero cc#16498830
    jimenezcuerow@gmail.com
    Calle16a #23-63 aranjuez cali valle del cauca colombia

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  14. Change Audit Log Layout

    The new audit log search in Compliance Center has a very bad layout so you can only see 3 search results at once. There is a lot of blank space with the new layout as well.
    The old version in the Security Center shows 4 times the results, which is better for finding trends or spotting an anomaly.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  15. Insights in previous licenses of users (auditing)

    Insights in previous licenses of users (auditing). Now you do not have clear insights.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  16. Senders sending Encrypted emails with Office 365 transport rule should be able to recall the emails. Case # 23636129

    Senders of the encrypted emails should be able to recall their emails. This feature is disabled currently and as per the support team under case # 23636129 this function is not working.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  17. Provide EDM DLP Policy Tips in Microsoft 365 applications

    Currently the EDM DLP Policy Tips only work in OWA. Microsoft 365 applications only provide non EDM Policy Tips. Extend the EDM DLP Policy tips to all Microsoft 365 Web applications and full application client

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  18. Exchange Calendar Auditing

    Please enable calendar specific activities within the ExchangeItem record set to enable visibility on these specific item types. For example, auditing on meeting creation and all updates like when a user is added, removed etc.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  19. How can disable Quarantine in the E-Mail?

    Quarantine is much more unreliable then the old "Junk Mail" folder
    and much harder to check.

    Now, we have to check Junk Mail and Quarantine besides the regular e-mail.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Alerts activities in SCC should refer the local time zone

    Alerts in Security & Compliance center lists activities in UTC. I would like to check activity time in the local time zone, please implement a functionality to change time zone preferences.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base