Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Office 365 mail queue viewer and control

    It will be better if Admins get the option to view the mail queue in Office 365. We will have more control on the email flow if this option is enabled.

    516 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    33 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for your feedback.

    Today you can see messages which are “pending” in a queue through Message Trace feature. In the Mail flow Dashboard, you can see messages queued for more than an hour. We’ve also created alerting for this condition. Can you tell us what other things you need and what the scenarios look like / how commonly you need to perform the task?

    This would help us when evaluating this item further.

  2. Allow Exchange Admin Auditing retention to be increased past 90 days

    The commands Set-AdminAuditLogConfig -AdminAuditLogAgeLimit do not work on 365. We have a requirement to keep all admin logs for 3 years but this cannot be performed.

    236 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    15 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →

    At this point, the Office 365 service only allows for the retention of audit entries for 90 days. Can you provide us more information regarding your requirement to keep logs for 3 years. Is this a legal obligation? Please provide details around the specific audit entries you would like to retain for an extended period of time.

  3. Create Content searches based on message ID, Time, and null/blank subjects.

    Employee's send out emails with no subjects all the time, however I am unable to add a null/blank subject as a condition in content search.

    I am also unable to content search or filter based off of message ID.

    There is also no time option, only date, as a search condition.

    This makes content searching for an email with no subject a huge pain.

    Please add the ability to create content searches based off of blank/null subjects, sent time between X and Y, and based off of message ID in the mail headers as an option.

    192 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow adding metadata fields to pending disposition reports

    Pending disposition and completed disposition reports are lacking metadata required to be captured by Government organisations for all disposed documents. Can we have the following metadata fields available in all disposition reports exported from Office 365:
    • Unique identifier (document ID number)
    • File name
    • Date created
    • Creator/Author
    • Date last modified
    • Last modified by
    • Date of disposal
    • Disposal label
    • Disposed by

    It would be even better if system admins could add/remove metadata fields from all disposition reports.

    Unfortunately, until these fields become available in Office 365 disposition reports, document disposal won’t meet the…

    68 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  5. end user notification

    currently in EOP, when we enable the end user notification for quarantine emails, the minimum value is 1 day, which may cause the issue we may miss some important emails, we required that we may improve the feature to send notification every hour.

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →

    Please share with us more about how you use the product. For scenarios which require end users to regularly scan for false positives, we find that customers prefer to use Junk Mail folder instead of Quarantine. Is that an option for you? Also, have you investigated the causes of the false positives? Improper configuration is the cause of roughly half of all false positives.

  6. Outbound email data should be used to assist in spam scoring

    Example: You and a customer have exchanged a series of emails back and forth and randomly an email will be held.

    The email addresses and domains (non free email providers) you have a history of sending email to should be a factor in the spam scoring and significantly reducing the likelihood that mail from that domain (less so) and email address (more so) are quarantined.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  7. Disposition review using PowerAutomate

    The Disposition Review dashboard show a list of many documentens that have to be reviewed when using in large companies. It would be useful to create Dispotition Review approval workflows to managed them.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  8. Allow version deletion in sites with retention policy applied

    Currently users can delete documents in sites with retention policies applied. When a user tries to delete a version of a document, they get an error message. Since versions of documents show up in the Preservation Hold Library as separate documents, it would improve consistency of behavior if users could also delete versions of a document.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  9. Glitsch in the segregation of user database in GDPR

    : When i today was managing the assigned user for the GDPR compliance in https://servicetrust.microsoft.com/FrameworkDetailV2/35413bd5-7b88-4356-b78f-e009dfa2ca4f is swiftly saw the userdatabase of a different tenant than mine on something dentalhealthservices... it was only visible for a few seconds. But i think there could be something wrong with the segregation of tenants in office 365 service trust portal.

    The issue happened when i was clicking assign user and the screen that should have shown me my own user database. Instead i saw the other tenants user database for about 5 seconds, and it dissapeared again.

    I was not able to recorde the…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  10. Specifying ReviewerEmail for Delete action fails with error message

    The ReviewerEmail field specifies the email address of a reviewer for Delete and KeepAndDelete retention actions. However when specified for a Delete action the following error message is generated: Microsoft.Exchange.Management.Transport.ErrorParsingCSVException: Validation failed in the provided CSV at row 1 column "ReviewerEmail". Error: ReviewerEmail can only be applied when retention action is KeepAndDelete.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  • Don't see your idea?

Feedback and Knowledge Base