Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Atp(advanced threat protection) can not prevent malwares,phishing mails etc. is there any service which we can inform about these mails.

    Atp(advanced threat protection) sometimes can not prevent malwares,phishing mails etc. is there any service which we can inform about these mails.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  2. Ban anyone hacking our emails

    If someone is stealing information and/or is attempting to take your ID Card or other personal belongings, and is planning to use it in a malicious manner. Must be contacted and informed by police and principal for disciplinary actions immediately.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  3. Hate UserVoice. Is limiting my ability to sign petitions on topics I care about!!

    Hate UserVoice. Is limiting my ability to sign petitions on topics I care about!!

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  4. Ensure that the Unified Audit Logs are as up to date as the logs in the office 365 management activity api audit log

    There are numerous times when I can see log messages in our SIEM quite a while before they are available via a query of the Unified Audit logs either via the GUI or via PowerShell. While getting the log into my SIEM in timely manner is good (I can trigger alerts based on that) there are many times when I need to grab the raw data from the Unified Audit logs to manipulate it to do things like query the IP address a user logged on from, etc. and then do a GEOIP address lookup of those IP addresses. There…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  5. Best and cheap Content writing company- suprams info solution

    Find best Content Writing company - Suprams info solution. We provide services like Content Writing, web writing ,blog writing and Freelancing services that help you to Convince your Audience with a Short, Crisp & Clear Message/ content. who can create super quality and well researched content as per as website requirement. Visit:- https://supramconsulting.wixsite.com/content-writting

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Service Trust Portal  ·  Flag idea as inappropriate…  ·  Admin →
  6. Provide option to choose multiple Regex Pattern while creating custom sensitive types for DLP

    Provide option to choose multiple Regex Pattern while creating custom sensitive types for DLP.

    My suggestion is for UI based not XML

    https://protection.office.com/sensitiveTypes

    I already aware MS giving option to choose multiple Regex while modify the XML file, but I am looking from UI

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  7. Full digital marketing Support service

    Search engine optimizing (SEO), search engine marketing (SEM), content marketing, etc. are some of the few methods are used for the marketing of products or services. So, consulting done by many digital marketing firms will provide you with a vision to carry out these processes systematically. For more query visit:-http://supraminfosolutions.over-blog.com/2019/07/fulldigitalmarketingsupportservice.html

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Service Trust Portal  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow more historical audit log data to be retrieved with the Management API

    I used to use Powershell to download data from the Unified Audit log (see https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance). Powershell allowed me to access audit events up to 3 months old.

    I have started to replace Powershell with the Office 365 management API, but I can only go back 7 days with the API. Please give the official API the same data access as Powershell,

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  9. Intune Policy based deployment

    Policy based deployment which at least encompasses capability to automate deployment of updates. e.g. Granular calendar based control to deploy say deploy all security updates to these specific groups on 21st of every month etc. You may want to use the new Azure AD dynamic grouping, at this time I know nothing about this as it's not rolled out yet.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  10. I had a great support from Office 365 Security team this week. I was constantly attack via phone.

    I had a great Support from the German SecurityTeam of Office 356 this week (Mr Demtschenko). He made great efforts to help the attacks I was getting by phone and investigatet that the number that called me was suspicous, plus, the method they used (looking up one´s Computer ID) was faked by telling me some number that is installed in all Computers with Micrososft installed. A good advice to prevent such Information is eventually to inform customers ahead, in what cases one should be suspicious to fraud or phishing as for instance, calls from "Microsoft Headquarter".

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  11. Advanced Threat Protection Wrongly processing all tenant users with the same domain

    If when creating a rule for Safe attachments or safe links domains are selected instead of individual users, everyone in that domain gets the ATP service regardless of subscription. It is great to have multiple rulers when you want to apply different rules to different users, It is a burden to have to enter and maintain these lists when the rule applies to all users with the ATP subscription.

    Request is to put an additional logic in the tool when domain is selected to check if the user has the ATP subscription before applying the rule and ATP process.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. Support for multi-values in Asset ID in event-driven retention

    When using event-driven retention, users apply a label (that's tied to an event type) and an Asset ID to documents. I believe right now only a single value can be entered into Asset ID. Is there any plans to support multiple Asset ID's (i.e. make Asset ID a multi-value field)?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  13. Stop blocking legitimate links from Entertainment Weekly newsletters.

    Stop blocking legitimate links from Entertainment Weekly newsletters.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add periodic Snapshots of Exchange Online to allow restore of active mailboxes

    Currently there's no way to restore the entire active mailbox from a specific time. Please add this feature.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  15. MCAS DLP

    Can Exact Data Match (EDM) be extended to MCAS to improve support for the MCAS DLP policies. There seems to be distinct differences in the way rules can be configured in MS O365 Email and MCAS and we want our rules to match across our environments.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  16. My User Compliance Score fell from 41 to 29, but i cant see a reason why it did

    My User Compliance Score fell from 41 to 29, but i cant see a reason why it did, I discussed with Microsoft backend, tech lead, they said they cant tell me why my score fell
    Its like my credit score fell and I cant find out which credit card I missed payment on,,thats not acceptable

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  17. Export Incident List from Microsoft Threat Protection

    Hi,

    There should be an export button on Microsoft Threat Protection (https://security.microsoft.com) to fetch the incident list directly from the portal.

    If not, provide a Powershell script to fetch the incidents

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  18. Approval Process for eDiscovery Search

    There should be an approval process each time an admin starts an eDiscovery, due to the all sensitive data. There are alerts, but this alert is only sent after the search is completed.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  19. Unique permission does not work on Lists when a user is added instead of adding a group

    If a user is added with contribute permission after breaking permission of a list, it cannot make any changes in the list and gets an error that "unable to communicate with server" . But if the user is added through a share point groups it works fine. And if you try the same on a library the user can upload and create new documents even when added directly.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Compliance Search property to bulk purge calendar items based on scheduled range.

    In situations where a resource needs to have meetings declined to make a resource unavailable for a period of time, administrators can only decline from within the calendar. Currently, there is no method to purge multiple calendar entries for a resource by a scheduled time range through a compliance search through PowerShell.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base