Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

How can we improve compliance or protect your users better in Office 365?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Content search can’t search with Search everywhere

    If you haven’t use a public folder in Exchange Online yet and tried to search contents in SCC, you can’t obtain correct results even if you selected Search everywhere. I would like you to fix this behavior to ensure it can obtain right results by using Search everywhere although you haven’t used Exchange public folders yet.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  2. Please provide more information on how to interpret the Tls Deprecation Report and include more info in it

    Please provide more information on how to interpret the Tls Deprecation Report and include more info in it, eg computer name, explanation of Agent details etc

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add Sorting by Category

    In our workplace we heavily relied on sorting our emails by category, since we have switched over to 365 this option is no longer available to us. Please add this feature into 365.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Export tool on Compliance search

    Export tool on the new compliance search (azure)

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  5. AIP: Disable ability to print to .pdf

    When allowing users to print it is quite easy to copy the file by printing it to a .pdf file. It would make sense to be able to print files, but not transform them in a digital .pdf copy. This makes it very easy to create a copy of a file where the users actions are not limited by rights management.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. language

    While creating a new policy, the ability to select multiple languages or countries under International Spam has been removed. Previously under the Exchange Admin Centre you could select multiple languages and countries.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  7. Add the ability to filter real-time reports by the custom anti-phishing policy so that we can see the amount and which emails are impacted.

    This report is within Security and Compliance>Threat Management.

    It currently only shows the technology, the protection policy is listed as a code which is impossible to decipher. There is no way to tell if it as result of a custom anti-phishing policy. It only implies the technology.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  8. Option for excluding purged email with on-hold

    My legal department would like to use on-hold from day 1 on the user but they would like to exclude purged emails (deleted emails that only exist in eDiscovery). In law cases, deleted emails can be a burden (negative for the Company).

    So I would like to have an option that we can enable by powershell, (exclude deleted emails).

    I guess that this is very different regarding which sector the Company works in. So an option would be great to (deafault off)

    We can today do a setting that purges the email after for example 6 months (user can recover…

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  9. OneDrive Retention

    Microsoft recommended using the retention for keeping files safe and restore-able in case and the employee decided to harm the files and remove from all recycle bins.
    So I made a policy to keep files for about 10 years after deletion but I was not able to reach the retention folder until I called Microsoft.
    I have been told to add "/PreservationHoldLibrary/Forms/AllItems.aspx" to the OneDrive link to be able to reach the folder and then it was really bad to see that the files name are changed which will cause so much troubles restoring it...
    For example text.txt become test_070A286E-3A53-4671-8368-B8CB8EC...... …

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Bugfix: ediscovery is erroring on usernames without mailboxes.

    When attempting to search all mailboxes it errors out on 5 local accounts that are not licensed in office 365.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add a policy to have a maximum number of characters in an email address (max 25)

    Our organisation is getting numerous emails where the email address extends to more than 25 characters long before the @domain.com. I'd like to see a feature where we can set a maximum amount. This way, it will alleviate these email addresses from being delivered. We cannot block domains from this group becuase it comes from a group of known domains in which we cannot just block it.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  12. Message Encryption Not ready for *********

    Their are various issues with message Encryption that I'd like to report: This is using Encryption when IRM is setup and you choose to encrypt the message through Outlook - Options - Permission- Encrypt Only

    1. When sending a encrypted message to an internal recipient (same O365 domain) the user is sent in a loop unable to view the document. You click on the message in the Outlook client and it opens up a browser to view it in Outlook Online. When In outlook online it states you you can only view the message in the Outlook client.

    2. You…

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add abbilty to customize the ATP email.

    We would like to customize the ATP email message. Several of our users asked if the email could contain information that identifies it as coming from our environment. They are not sure it is a real message.
    Adding our logo and or custom text would be great.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Hope there will be more Audit Log about email issue

    Hope there will be more Audit Log about email issue. (Last time i tried to find log about "Email forward setting" but failed

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  15. Group Email id (distribution list)

    When ever we are creating new email id it should have the option of adding automatically to the particular Group Email id (distribution list) and the option should be available for the normal distribution group.

    Option should be available for normal distribution group can be converted to dynamic distribution group?

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  16. Audit reports delete log entries are using userid and groupid.

    There is no way to get a listing of userid and users or group ids and group names. Either consistently user login user names and group names OR provide a means to relate userids to users and groupids to group names.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. would like to mark any messages inbound and outbound with 80+ messages as SPAM and allow them the option to select which messages are allowe

    I´d like mark any messages inbound and outbound with 80+ recipients as SPAM and allow them the option to select which messages are allowed to be delivered with 80+ recipients and which are not.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  18. MS Stream - Default change to share option

    Alter the current default section of share with 'everyone in the business' to 'only me' to avoid employees accidentally sharing personal and/or sensitive data with the entire organisation.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  19. provide easy method to submit suspicious files for in-depth checking

    I've had a heavily obfuscated macro/word doc passed onto me via outlook (nothing stopped me downloading the file to onedrive!), it would help if we could submit suspicious files so you can improve malware/virus detection. and suitable notifications for both the user and Office 365 admins.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  20. O365 mailboxes audit log is missing alot of essential data

    O365 audit log is only showing the real IP from which a certain mailbox was accessed, this is not helpful and not enough at all, as usually users are accessing internet via PAT real IPs, so it is totally misleading whenever there is any need for a sure piece of information, so at least we need to know the virtual IP, Machine name and the mac address from which any mailbox was being accessed, as real IPs are telling nothing.

    1 vote
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base