Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Quarantine should have a button to report phishing emails.

    I get hundreds per day and it's impractical to release them all and report them.

    Working in the Quarantine is a MESS! The GUI is something I'd expect back in the 2000's.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  2. Language Office Message Encryption

    I believe this is a MUST for multi-national companies. When OME sends out it's generic wrapper email to the recipient, it needs to be read by the recipient in the language they are fluent in. I know it is hard to know what language the recipient speaks, so maybe the best approach is to pick the top 25 languages used in business and translate it to those 25, and place links to each translation in the top of that generic email to the user, so they can click on the correct translation and read in their preferred language.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. In Exchange Admin Center and Content Search allow searches to be copied or cloned.

    In Exchange Admin Center and Content Search allow searches to be copied or cloned

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Filter spam settings to catch 0 x 0 font or white on white text in HTML.

    It would like nice to catch messages that are using 0 x 0 font or white on white font in HTML code. We should be able to filter on these settings. We need to keep up the hackers techniques.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  5. Have MFA challenge tell you which app challenge is for

    This would eliminate confusion when multiple txt msg's come in and not knowing which text code to put in which challenge box

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. DCR for User Defined Labels : Need the ability for users to use user defined labels for documents opened in Office web apps

    DCR for User Defined Labels : Need the ability for users to use user defined labels for documents opened in Office web apps as the they can in Office local client apps.
    we do not want to create many Labels for each variant our users need. User Defined Labels is the best way to allow user to use Labels

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Archive LinkedIn and other social media

    Now that Archive third-party data has been added to the Data Goveranance\Import location when will LinkedIn be available?

    Interesting that the first two connectors available is for FaceButt and Twitter but not LinkedIn!

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  8. Quarantine e-mail layout

    We have some users that are getting Quarantine e-mail.
    I understand the fundamental use of Quarantine however I need an explanation why email quarantine format/layout has changed 3x within the last month.
    This raise email suspicions for end users especially the IT department.

    24/10/2019 – Email layout changed to new look.
    22/11/2019 – Email layout changed back to old/original look.
    26/11/2019 – Email layout changed to new look again.

    I need an explanation on why the layout changes 3 times in the last month?
    Which layout are you guys using from today onwards?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  9. ATP Safelink - Display test of destination URL

    By including text displaying the original URL path, that is not in the form of a hyperlink, you would allow users to gather context that can be ascertained from the URL path. People would also be better informed before clicking a on a URL that may or may not be malicious, only to discover they would not have clicked that link if they had seen the path before they clicked on it.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  10. เยส

    เยส

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Security Status of Microsoft Cloud Services ("Secure", "Degraded", "Compromised", etc

    We had an issue this morning where our filtering provider marked all Microsoft traffic as suspect. I do not know at this time was what triggered the event, but the provider could not provide assurance on as a false positive. I have nowhere to look on My tenant to verify this claim. As Microsoft’s presence in the cloud grows it becomes a very attractive target and no site is immune. I would think there would be a resource somewhere on the Microsoft site or my tenant that would provide a security status. Obviously this dashboard would not have details, but…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. Christel Mehnert, Wittenbergstr. 2 A. 39576 Stendal, Deutschland

    Es wurden am 23.05.2017 69,00 € von meiner Kreditkarte abgezogen von Microsoft zur Verlängerung meines Vertrages von Office und ich habe ein Schreiben erhalten, dass Office 365 für 1 Jahr verlängert ist.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  13. I ran a malware test from https://www.emailsecuritycheck.net and Outlook 365 failed every test.

    I ran a malware test from https://www.emailsecuritycheck.net and Outlook 365 failed every test. My suggestion is to perhaps check for malware?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  14. Automatically adding user who took specific actions to the recipients of the alert policy notification message

    We need to set recipients who receive the alert policy notification in advance, but I want the message to be sent automatically to the user who has taken actions as well.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Seperate Encryption Policy/Label for Emails

    We can apply/create a label under security classifications for files, and/or emails AND files, but not just files.
    When creating a default policy, it is applied to ALL MS Office components.
    If an email is sent to an external party who is not part of the tenant, they cannot read the message body AND the encrypted attachment.
    They would not be aware of the messages contents, to be aware there was an encrypted attachment (which they should not be able to open). There only option is to reply, and ask 'was this meant for me??'

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  16. Not able to trace creator or for whom HIGH severity alert has been triggered however able to see for LOW severity alerts.

    Can you please provide a way how to find who has created that HIGH severity alert or for whom it's been created ? for the security concern.

    Able to trace user & creator for LOW severity alert but not for HIGH severity alert.

    Looking to here from your side!

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow downloading of search reports without the need for Internet Explorer or Edge (non-chrome) version.

    Really. We still need IE or Edge to download ediscovery reports. Chrome, Edge with Chrome and basically any browser should work.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  18. Extract mailbox last login

    This is basic functionality. We are not getting mailboxes last login date

    We tried checking in the Audit log but it is not giving the data what I am looking for and again it has limitation of 90 days.

    As a revalidation process we are re-checking wheater email ids disabled or not b

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  19. User cannot see "deleted site collection" event.

    User cannot see "deleted site collection" event in [Office 365 audit log report].
    It seems this feature is not supported yet, but the "deleted" event in [Office 365 audit log report] should be supplied since it is very important information for operation and maintenance for administrators. They feel disadvantage that the "deleted site collection" event is not provided although there is “SiteCollectionCreated” as operation in [Office 365 audit log report]. Please change the design.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  20. Sensitivity Labels in Outlook Web needs to have the same functionality as in Outlook desktop.

    Outlook web needs the ability to set the same Advanced Settings for sensitivity labels that Outlook desktop has or use the same settings that are set for Outlook desktop. The default label is just one example.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base