Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. O365 Retention Tags - Do not act as per documented on Technet

    Microsoft documentation clearly states a E3 or E5 license is required to enforce retention policies from Office 365 compliance center. I have proven this to not be true and opened a ticket with Microsoft, their response was:

    "While an archive\Retention can technically be applied to a shared mailbox without a license, this is not supported. Since it is not supported to do so, this ability may be removed in the near future."

    a) Either fix the product to do what your documentation states, or change your documentation and support O365 retention policies on non licensed mailboxes.

    b) Do proper QA…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  3. Create an Alert for Newly created Document Library

    We would like to setup and Alert when Document library is created by the super users, so IT department can double check the security setting.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow us to change devices name at [Device Operation] page

    *English follows Japanese

    ■Title(件名):
    [デバイス操作] ページのデバイス名変更機能の実装要望
    Allow us to change devices name at [Device Operation] page


    ■Description(内容):
    現在、Microsoft 365 MDM 機能において、[デバイス操作] ページに表示されるデバイス名を任意に変更することができない。

    どのデバイスであるかを管理することが困難なため、[デバイス操作] ページでのデバイス名の変更機能の実装を要望します。

    I would like to change devices in any name at [Device Operation] page for Microsoft 365 MDM to recognize devices by name for better manageability.

    Thank you for your consideration.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  5. Services OFFICE365

    Guys, this new office365 service portal is much more complicated than the old portal which was much easier
    Removing the security part of Exchange and separating only got worse, and removing the functionality of the old portal is complicating it much more.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. Quarantine "Not yet released to" should be near the top of the page

    The "Not yet released to" field would be better near the top of the page instead of at the bottom so you don't have to scroll down to see who the email is going to be released to.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  7. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  8. If you share files uploaded to OneDrive with external users, DLP will not detect them.

    If you share files uploaded to OneDrive with external users, DLP will not detect them.

    Upload the Contents file containing Sensitive Data to OneDrive.
    DLP will not detect sharing with external users.

    OneDrive's sharing function is a basic function that users use very naturally, such as attaching a file to their email.

    If Sensitive Data included Content is delivered to external users using OneDrive sharing function, DLP will request modification so that it can be detected.

    The only way to detect this now.
    1. Record file information with Sensitive Data in DLP Events
    2. Check if recorded file is an…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  9. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  10. Improve interface of the Intelligent Mailbox protection

    The Office 365 Anti phishing default policy has options for adding users despite the documentation saying that the default applies to all users? This is very confusing.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow NIST 800-53 baseline implementation (low/moderate/high)

    A filtering option to apply NIST 800-53 controls for a low/moderate/high baseline should be applied.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  12. Make the effect of actions in EOP quarantining of messages clearer.

    Currently it is not clear from the guidance supplied whether Remove From Quarantine will then let a user read the email in their inbox or whether it will result in the email being deleted. Hence, it is unclear which action a user should select between Remove From Quarantine or Release Message. Better distinction is needed to enable users to be able to make the correct choice, especially when they are happy about a sender so want to read the email.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  13. re synchronize sharepoint user without needing to delete account from the active directory

    Currently, the user account can not be refiled from the sharepoint without deleting the active directory account in some cases.
    It is necessary that it can be done when there are users who have problems in sharepoint.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Stop asking me to connect my computer to the internet regularly to verify my office 365 account. This is very annoying. You only need once.

    Because my account has already been verified when I activate my office 365. It is not necessary to do this time and time again. I do not want to connect my computer to the internet. This is very annoying,

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Privacy  ·  Flag idea as inappropriate…  ·  Admin →
  15. Use wildcards in Device User Agent quarantine rules

    It would be good to be able to use wildcards to test Device User Agents in mobile quarantine policies.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Block file transfer that is in progress to OneDrive

    WE do not want users to bulk transfer files from on premise shared storage to individual OneDrive storage.

    Please include the following capabilities:
    1) Audit log entry for number of files and size of file transfers
    2) Notification to admins if file transfers exceed a user selected setting on # of files and on file size
    3) Ability for admins to stop file transfers, if required.

    One justification: If a person is on legal hold, any files uploaded to OneDrive will be there permanently, although inaccessible to the user. Files that contain confidential or sensitive information cannot be deleted, increasing…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  17. To recall and replace a message

    hi,

    OWA web in we want to To recall and replace a message function example Click Delete unread copies of this message or Delete unread copies and replace with a new message, and then click OK.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  18. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enable 2FA on Outlook

    It is simple - get rid of the whole "app password" scheme for Outlook and Skype and enable real, honest-to-goodness 2FA for those apps!
    I am astonished this still has not been done.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  20. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base