Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Export Full Urls from Threat Management > Explorer

    In Microsoft Security and Compliance > Threat Explorer, it allows you to export emails that you searched for based on different criteria. In the exports, it doesn't give you a list of the urls contained in each email. I would like to see this functionality.

    It's helpful because sometimes a phishing campaign uses several different urls and currently there isn't an easy way to determine them without a lot of manual work.

    Thanks,

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add download option to the Forwarding Report

    The recent addition of Mail Flow insights to the Security & Compliance centre is helpful. But the FORWARDING REPORT is missing the facility to DOWNLOAD the data, or to schedule the creation of a report on FORWARDING.

    Can you please look at the option to either allow the data to be downloaded, or for a report to be created/scheduled.

    Thanks

    127 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    boom! it's done  ·  11 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  3. Extend the Audit Log to hold records for longer than ninety days

    The Audit Log's functionality in Office 365 is excellent but the logs are only held for ninety days rolling.

    Due to this we are having to look at third party solutions to export the logs automatically, but this would be much easier if you extended the logging period out to a much longer period - years would be better than months.

    154 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  4. eDiscovery export PST size options

    Would like an option when exporting O365 eDiscovery search results to select the size of the resulting PST(s). As of right now, eDiscovery exports results in ~10 GB PSTs and automatically splits large exports into multiple ~10 GB PSTs. This large PST size is causing processing delays in our other applications. Smaller PST exports, such as 2 GB PSTs, are ideal.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  5. Safe links do not apply to internal emails

    Recently one of my user's credential compromised and using his credential and intruder sent email containing a malicious link. The email directly delivered to other person as it was treated as internal email.

    ATP by design doesn't apply safe link policy to internal emails. So I can clearly say it is a high security risk.

    Internal user can also do it by intention or by unknowingly, which will in return damage the environment instead of having ATP in place.

    So my suggestion is to apply the safe link policy to internal as well as external emails.

    Thanks,
    Manoj Malik

    147 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  6. Advanced Threat Protection (ATP) - Implement in Safe Link a blacklist

    Please implement in ATP Safe Link a black list for single tenant where insert the bad urls that ATP not intercepts or the bad url that are malicious for the company

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  7. Implement Sender Rewriting Scheme (SRS) to Resolve Forwarding Issues

    Forwarding in SMTP is fundamentally flawed unless you implement SRS.

    http://www.openspf.org/SRS

    If you maintain the Return-Path of the originating message while forwarding you effectively spoof the originating domain.

    If you modify the Return-Path to be the address of the account that forwarded a message you break the Return-Path chain and delivery issues will result in the forwarded message Delivery Status Notification (DSN) being delivered to the forwarding user and not the original sender.

    SRS resolves this by modifying the Return-Path in a way that doesn't spoof the originating domain but still allows DSNs to be sent to the original sender.

    647 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    38 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  8. protection center report

    Provide the facility to automate the production of audit reports (to CSV ideally) from the new Protection Center so that audit data can be downloaded on a schedule and then imported into a local SQL database for detailed reporting and analysis using Reporting Services for company board meetings. This is a genuine request from a client of ours due to the sensitivity of documents they hold so they need to be able to report at weekly board meetings on user activity

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  9. Change Exchange Online recipient limit

    Need to change Exchange online Recipient Limits. The default value is 500 and can't be modified.
    In this case, users are able to send bulk\Spam messages by selecting entire global address list.

    1,547 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    120 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  10. One Drive for Business - improved audit control

    Audit reporting to identify what documents our users have shared with external contacts form their OneDrive. This missing feature is holding us back from rolling out OneDrive and getting all it's benefits.

    53 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base