Allow reclassification of manually labelled files via AIP/Unified Labels on SPO/OD4 via MCAS File Policies. Currently only files previously labelled by MCAS can be reclassified by MCAS.104 votes
Currently, removing the "People with the link" sharing option is only possible per site:
Set-SPOSite -DisableCompanyWideSharingLinks Disabled -Identity $siteUrl
Considering that the recommendation from Microsoft is to allow all FTEs to create O365 Groups (therefore, SPO sites), disabling this link on every new site would require automation (adds complexity, costs) and would be done with delay.
Our Chief Security Officer sees it as a security threat, and to limit accidental exposure, requested this sharing link to be disabled on a tenant level (with an option to enable it per site).
The following would be very useful:
Set-SPOTenant -DisableCompanyWideSharingLinks15 votes
Give end users the ability to set internal emails to encrypt / confidential by default rather than having to select "encrypt" manually. Currently this can only be done at the admin level for all users.5 votes
One Drive personal vault is currently available in OneDrive home and personal plans. It could be usefull to activate this solution on Office 365 business to improve for example the security of mobile device.1 vote
Create a label for automatic classification, add the label to a label policy, but prevent end users from manually selecting that label or hide the label from end user view.
In order for an automatic label to function it has to be added to a label policy, but this, in turn, allows end users to manually select this label. This creates a gap because it is logged as an automatically labeled file/email which is to be believed that it was labeled automatically based on a ruleset.1 vote
Please add the ability to label content in OneNote with Sensitivity labels, add auto labeling, and for eDiscovery to be able to search user OneNotes to tag for hold. We need to be able to scan data and understand if it needs to be labled because of PII or confidentiality.1 vote
Once ruleset are configured and the AIP policy is running the background files should always be labeled using the configured rulesets. Currently when a user manually selects a label that selection is final and even the policy running in the background cannot change that.
If a business is configuring a ruleset then that should prevail every time sensitive content is detected.1 vote
**** stars status1 vote
- Don't see your idea?