Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Logs for Left navigation deleted details

    Need to get some logs related to who and when has deleted the Left navigation menu item from Sharepoint online

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  2. baun_michael@hotnsil.com

    Protect against basic phishing attacks without uing Defender.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  3. An NDR is sent to the sender when the anti-spam policy blocks an auto-forwarded message to an external domain

    An NDR should NOT be sent to the sender if the user had checked the box in Forwarding to 'Keep a copy of the email' before forwarding. It doesn't make sense for the sender to get an NDR when the email actually has been delivered. Expected behavior is, if the box to Keep the email has been checked, I would expect the recipient to get an NDR if an anti-spam policy is blocking external forwarding; if the box to Keep a copy of the email is not checked, then the sender gets an NDR.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  4. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  5. Prevent selected senders to end up in quarantine over and over again

    I DO want to receive mail from certain senders, yet they always end up in quarantine. I cannot change that, put them on an exception list or something like that. Would be a nice options to have some control yourself.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  6. Option for real time notification for emails getting Quarantine.

    Currently the notification is coming after 24 hours and chances are their to miss the important email. It will help if we can have the real time notification for the email getting quarantine.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  7. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  8. Reveal Microsoft Operator location in Customer Lockbox request to comply with GDPR third country transfer prevention

    In order to control access to data in the tenant for MS personell that are located outside of EU/EEA, the customer lockbox approval process should reveal where the Microsoft Operator is located and if in a "third country" according to GDPR. Any access from outside of EU is considered unlawful (yes EU SCC might circumvent that) but a EU based Operator, Technician should be assigned per default and its location revealed. We have cusomters with whom we aggreed not to transfer their data outside of EU and not knowing where the MS operator is beforehand is a compliance and privacy…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Privacy  ·  Flag idea as inappropriate…  ·  Admin →
  9. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. SAVE Button

    It would be nice if the SAVE button was at the top, rather than having to scroll all the way to the bottom.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  11. Make transparency easier to process. And add a dual step authentication rather be fingerprint on each side of the phone and facial recogniti

    Develop a multi factor synchronize verification possibly with a dual finger authentication on each side of phone and theoretically have the third step rather be with a voice recognition while holding the two scanners on the sides of the phone or a 2 to 3 word user voice that command on certain three word user phrases that could in certain circumstances discretely get emergency departments a direct message for help. ****, It doesn’t even have to be that serious some of you’re discreet authentication could send a quick text message or to Q up the music or dim down the…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow automatic forwarding to specific domains only

    I would like to allow automatic forwarding to specific domains only. Currently, Microsoft only allows automatic forwarding to all external domains or block forwarding to all domains. However, we want something in between. We want to block automatic forwarding to most domains, but, at the same time, allow to white list the automatic forwarding feature to specific "safe" domains.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  13. Prevent site owners from changing default site label

    Maybe I'm wrong, but iif correct group and site ower can change the label. There should be the possibility have a defautt label assigned and only Administrators can change the label. If you map policies against the labels like cond access , group and site owner should not be able to change.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Your selection of blocking weblinks to Christian websites is unconstitutional!! Labeling them 'malicous'!!! Are you kidding! COMMUNIST!

    Stop Censorship of you choosing! This is unconstitutional and disgusting. You are not my parent.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  15. Dacabaca in ainte be a in ainte sa faceti nivelele vati uita daca exista vro modalitate de a rezolva nicelul??🧐🧐

    Daca inainte de a lansa nivelul ati putea sa verificati daca exista vreo modalitate de a rezolva nivelul??

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  16. Sensitivity Info Types Keyword Detections Multiple Matches

    To allow multiple matches for keywords detection instead of only single match. Sometimes we would like the detection rule to detect only when multiple matches happened not just match one out of several keywords.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. notify user of completed tasks

    send alerts when user actions have been completed. ie, when "add to review set" is complete, email the user who requested the action so we can continue with our internal process.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  18. phishing URL with captcha in the landing page not getting blocked by ATP

    We get phishing attacks where the URL goes to a page with captcha which needs human intervention to download the malicious content. Hence ATP cannot block such URL's. Whats the plan for this type of attacks?

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  19. Automatically apply a specified sensitivity label to documents placed in an container such as SharePoint

    Label and Classify a documents with a specific label when they are place in a specific Container. Same functionality that is possible in SharePoint Online with Retention Label. Several customer ask for this functionality.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Request that the functionality be improved so that more than 50 items can be added to the [protect domain] of the [Anti-phishing policy].

    ■Title(件名)
    [フィッシング対策] の [保護ドメイン] に 50 件以上追加できるように機能の改善を希望します。

    Request that the functionality be improved so that more than 50 items can be added to the [protect domain] of the [Anti-phishing policy].

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base