Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. There should be feature, to monitor our specific user mailbox storage size according to time period like what was 2/3 weeks ago mailbox size

    There should be feature, to monitor our specific user mailbox storage size according to time period like what was 2/3 weeks ago mailbox size.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  2. Option for excluding purged email with on-hold

    My legal department would like to use on-hold from day 1 on the user but they would like to exclude purged emails (deleted emails that only exist in eDiscovery). In law cases, deleted emails can be a burden (negative for the Company).

    So I would like to have an option that we can enable by powershell, (exclude deleted emails).

    I guess that this is very different regarding which sector the Company works in. So an option would be great to (deafault off)

    We can today do a setting that purges the email after for example 6 months (user can recover…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  3. OneDrive Retention

    Microsoft recommended using the retention for keeping files safe and restore-able in case and the employee decided to harm the files and remove from all recycle bins.
    So I made a policy to keep files for about 10 years after deletion but I was not able to reach the retention folder until I called Microsoft.
    I have been told to add "/PreservationHoldLibrary/Forms/AllItems.aspx" to the OneDrive link to be able to reach the folder and then it was really bad to see that the files name are changed which will cause so much troubles restoring it...
    For example text.txt become test_070A286E-3A53-4671-8368-B8CB8EC...... …

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  4. Bugfix: ediscovery is erroring on usernames without mailboxes.

    When attempting to search all mailboxes it errors out on 5 local accounts that are not licensed in office 365.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add a policy to have a maximum number of characters in an email address (max 25)

    Our organisation is getting numerous emails where the email address extends to more than 25 characters long before the @domain.com. I'd like to see a feature where we can set a maximum amount. This way, it will alleviate these email addresses from being delivered. We cannot block domains from this group becuase it comes from a group of known domains in which we cannot just block it.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  6. Hope there will be more Audit Log about email issue

    Hope there will be more Audit Log about email issue. (Last time i tried to find log about "Email forward setting" but failed

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  7. Group Email id (distribution list)

    When ever we are creating new email id it should have the option of adding automatically to the particular Group Email id (distribution list) and the option should be available for the normal distribution group.

    Option should be available for normal distribution group can be converted to dynamic distribution group?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  8. Audit reports delete log entries are using userid and groupid.

    There is no way to get a listing of userid and users or group ids and group names. Either consistently user login user names and group names OR provide a means to relate userids to users and groupids to group names.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. would like to mark any messages inbound and outbound with 80+ messages as SPAM and allow them the option to select which messages are allowe

    I´d like mark any messages inbound and outbound with 80+ recipients as SPAM and allow them the option to select which messages are allowed to be delivered with 80+ recipients and which are not.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  10. it would be great if MS can find a solution on auto download pictures from external sender instead of whitelist the sender

    it would be great if MS can find a solution on auto download pictures from external sender instead of whitelist the sender

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  11. provide easy method to submit suspicious files for in-depth checking

    I've had a heavily obfuscated macro/word doc passed onto me via outlook (nothing stopped me downloading the file to onedrive!), it would help if we could submit suspicious files so you can improve malware/virus detection. and suitable notifications for both the user and Office 365 admins.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. O365 mailboxes audit log is missing alot of essential data

    O365 audit log is only showing the real IP from which a certain mailbox was accessed, this is not helpful and not enough at all, as usually users are accessing internet via PAT real IPs, so it is totally misleading whenever there is any need for a sure piece of information, so at least we need to know the virtual IP, Machine name and the mac address from which any mailbox was being accessed, as real IPs are telling nothing.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  13. Office 365 does not warn that the password has 7 days to complete.

    Office 365 does not warn that the password has 7 days to complete.The warning window says it's coming but there's no warning. I have 30 users and it gives no warning.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  14. We need to know the IP address of the user who makes a rule on his mailbox

    We need to know the IP address of the user who made the rule on a user mailbox since this action is usually triggered by an abuser who compromised a user mailbox

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  15. Access to CRM should be controllable through Intune (MDM) or, better, like Exchange does.

    Access to CRM should be controllable through Intune (MDM) or, perhaps even better, like Exchange does.

    We need to monitor and controll which devices are allowed for using CRM, and we want to force password and lock-time settings when installing the CRM app.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Safety Tips tab in Anti-phishing Policy

    From Damian - Configuring Safety Tips for Anti Phishing
    https://www.powershellgeek.com/2020/06/05/configuring-safety-tips-for-anti-phishing/

    Add Safety Tips tab in Anti-phishing Policy instead of the link 'Turn on impersonation safety tips' in Actions tab

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  17. How about you use SPF records to verify the validity of a mail server like the rest of the industry?

    We moved our client to a new internet connection and changed their MCX and SPF records accordingly (both records had a TTL of 60 seconds). 3 hours later, they told us O365 was blocking them. Check of industry blacklists and SPF Validity tests indicated noone else had a problem receiving their mail, it was just O365 being special

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  18. Change 2FA+Login process to prevent phishing

    2FA can be used to prevent phishing if a change to the login and 2FA process is applied to online login portals. The login page must load only the username field statically. The username is submitted and if found in the database an OTP is sent to the user. Once OTP is successful the password field gets loaded dynamically, the password is entered and the user authenticates. A spoofed website will not be able to simulate the 2FA, so once users are aware of the new authentication method they will be able to identify the spoofed page before they enter…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  19. New-ComplianceSearch should have a flag to ignore invalid locations

    When we have built a list of recipients and fed them to New-ComplianceSearch it will report on invalid locations and not create the search. It would save time if we could pass a flag telling it to ignore invalid locations.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Adding Message Sent and Messages Marked As Unread events types

    Are there any plans to add Message Sent and \or Messages Marked As Unread events types for Exchange Online in the near future? Not including these event types in the O365 audit trail makes it difficult to monitor for certain suspicious activities.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base