Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Coauthor on desktop/mobile apps for labelled document.

    Its great function for SPO and sensitive label integration.

    But Co-authoring is not supported, so we hope it will improve for a good user experience.

    > Office desktop apps and mobile apps don't support coauthoring for files that are labeled with encryption. These apps continue to open labeled and encrypted files in exclusive editing mode.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  2. Option to create sensitivity lable to encrypt mail but allow forward / print

    We use "confidential" lable to encrypt mails especially send between top level management containing sensitive data, even the assistant with access to management mailbox should not know.
    Sometimes this information need to be forwarded to another manager or to the assistant (eg. coordinate meeting). Currently this is not possible.
    We need the option to implement a "protected" lable which provide encryption, only the recipient can decrypt but recipient can forward / print content.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  3. Need a extension for S/MIME in the NEW Edge (chromium) and Chrome.

    Microsoft Needs to create a control/extention for S/MIME that works for New Edge (chromium) and Chrome that can be down loaded from there app stores/extension libraries. Currently from what I can find for users not on a domain (such as at home) you can only us S/MIME if you use good old clunky IE. This is a problem for those organization that rely on S/MIME.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  4. Create a mechanism to wrap an OME Configuration to some/all encrypted emails but not every emai.

    "Ensure all external recipients use the OME Portal to read encrypted mail" in the article below is misleading. The instructions lead you to encrypting every outbound external message. It would be nice to ensure external recipients OF ENCRYPTED EMAILS use the OME Portal. Even better, ensure some external recipients (based on criteria like recipient domain) OF ENCRYPTED EMAILS use the OME Portal.

    https://docs.microsoft.com/en-us/microsoft-365/compliance/manage-office-365-message-encryption?view=o365-worldwide#ensure-all-external-recipients-use-the-ome-portal-to-read-encrypted-mail

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  5. SMIME and Computers not joined to the SMIME domain.

    Not all users of a O365 environment can be joined to a domain that is part of the O365 infrastructure. Many of us use a website OWA access that belongs in a government domain, but are required to use their o365 email for all communication. Edge and Chromium SMIME extensions must work for external computers that are not joined to the domain, since millions of our corporate computers will never be joined to these domains. We remain stuck to 32bit Internet Explorer for SMIME. Either remove the domain requirement, take on the acceptance and control of domains that are acceptable…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. Improve support for OpenPGP encryption with Web Key Discovery (WKD), Trust on First Use (TOFU), or even AutoCrypt

    The page on message encryption mentions third party providers like GPG / PGP encryption. I clicked the "Encrypt" button (Outlook Web UI) and sent an email to my ProtonMail account, but it didn't encrypt, just sent a link that can be used to view the email (with a passcode that it sends in a separate email, also not encrypted).

    It would be good to expand the use of Encrypt to interoperate with other providers, by looking up where key discovery exists (such as WKD), or using Opportunistic Security (RF 7435), e.g. where a message arrives with an OpenPGP key attached,…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. 3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow external users to see more than one message (all messages sent to them) in one session

    If I send an external user 2+ messages they receive links for each individual message. Can they see a listing of all messages that were sent to them? Asked differently, can they bookmark a landing page that gives them a central place to view all messages (that haven't expired) in one location?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base