Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. License report

    Create license reports per O365 subscription. example: E1, E3, Project Online, Visio, Power BI, E5, etc? with end user login, UPN, Country, purchase date, last usage date.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  2. office 365 does not work

    office 365 outlook doesn't sort, doesn't load, doesn't send, basically doesn't work. i have updated loaded, reloaded, reloaded, updated, deleted, reinstalled, updated, reinstalled, reloaded.

    doesn't work

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Imporve Mailbox usage Filter - to see usage of shared mailboxes - if need reach limits of 50GB it needs a Online plan 2

    When a shared mailbox reaches his limit of 50GB, it need a Online plan 2. We tried to achieve this by the portal.office.com but we cannot filter the csv usage list on user mailbox and shared mailbox.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  4. Improve reliability in exchange online Message Trace/Mail flow tool

    had in issue last week where recipients claimed not having received a particular mail which was sent with "Send As" permission. Putting the message ID of that particular mail in the Exchange Online (extented) message trace tool, did not return any information. Message Tracing is a vital tracing tool for IT administrators on which we must rely for 200%. Message trace search on subject should be implemented with high priority!

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  5. malware

    Just as there is a bypass for Spam, there should also be a way to bypass Malware detection. We are fighting an issue where an HR document that is sent to new hires as a *.docm is being stripped from the communication. There should be a way to continue to block *.docm files but exclude scans of filenames you know and trust. Thanks

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  6. ContentType

    There are content types Audit.General, Audit.SharePoint, Audit.Exchange, Audit.AzureActiveDirectory and DLP.All but did'nt find content type returning data for "Security And Compliance Centre".So i think this should be added to microsoft doc.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  7. I want to reduce the time it takes to export content search results.

    I want to reduce the time it takes to export content search results.

    When exporting content search results in the Security & Compliance Center, it takes time if the amount of data to be exported is large, so I want the ability to export in a short time.

    コンテンツ検索の結果をエクスポートするのにかかる時間を短縮したい。

    セキュリティ & コンプライアンスセンターのコンテンツ検索の結果をエクスポートする際、エクスポートするデータの量が多いと時間がかかるため、短い時間でエクスポートする機能がほしいです。

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  8. Suppress repeat DLP alerts

    When an email triggers an alert, it continues to send them as each reply to the thread is sent.

    I believe that the users involved should continue to get alerts, but admins should have an option to suppress repeat alerts. Having 10 alerts for the same identifier does not help us investigate, it just creates noise for us to work through.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  9. Better SPAM filtering by allowing address portions to be use

    Lately a SPAM house is defeating all of my ANTI-SPAM efforts by using revolving domains, subjects and addresses. Each address has one thing in common right now, they all com from Contact@domain.com. If your SPAM options would allow me to use the "Contact@" portion of the address as a search feature, I could block a whole host of e-mails coming in. Then if they used "Comments@" Support@, or any other common tag, I could filter them out, but Outlook does not allow us to filter on a portion of the address. But maybe it should.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  10. Encrypted Email Bug

    I activated a mail flow rule to encrypt an email when a specific word is the subject line. When an internal user receives an encrypted email and replies, the Signature drop down does not show the user created signatures. The only workaround is to change the Outlook options to add a signature to all replies/forwards. This was identified as a bug after submitting a Microsoft help ticket.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Encryption & Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  11. DLP Policy Sharepoint location url filter / wildcard

    DLP policy limits to SPO sites per policy. in a shared tenant we have different data classification and DLP policies per division with lots of sites collections.
    ability to filter based upon site naming (prefix) convention <tenanturl>/sites/CO*

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  12. Advanced Threat Protection - failed to scan for hyperlink inside an email attachment.

    There is an email attachment inside the incoming email. The email attachment contains a link that points to the phishing web site. The same link can be identified as phishing in Edge or Google Chrome. I forward the same email to gmail and it can be successfully filtered. The ATP of the Office 365 needs to be strengthened.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  13. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Email notification when a device is unenrolled from the Office 365 MDM

    Would it be possible to implement an email notification when a device is unenrolled from the Office 365 MDM? Right now, if a user has administrator rights to the enrolled device, they can unenroll it without any notification being sent to the IT staff.

    Thank you

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Data protection and the possibility to delete part of received mails.

    Hi Microsoft, With the new European personal data protection legislation soon to to apply, it would be a great help if we could have a possibility of deleting personal information in incoming mail (without resending and deleting original mail, as this may be part of a longer discussion which we actually need and where we would also want to trace other part of the mail correspondance for further use). Senders are not always aware not to add 'personal dataprotected bits of information in e-mail, and often it is part of normal day communication to disclose that you have been ill…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  16. Sanitize content from any sensitive information type prior sharing outside organization

    Scenario will be to trigger a DLP policy on a specific sensitive info type within a document or email.
    Then trigger an action to clean/sanitize any sensitive info type found and potentially replace it with a note.
    End goal will be to enforce a least disruptive DLP policy for end users allowing them to share content outside the organization with safety net of replacing sensitive info type automatically.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  17. Left User One drive and migrated to New user ONE Drive

    I understand this requirement is import to you. I also tried my best to try to escalate the case for you, but it’s declined because this request is out of our support boundary. According to our process, non-support features cannot be escalated.

    Really sorry that I cannot be more helpful. To not waste your time from our side, I’d like to recommend you submit the request via the following channels. We have limited resources regarding some issues and requests, but the following support channels may help you further with more options:

    Premier support: https://premier.microsoft.com
    MSDN Forum: https://social.msdn.microsoft.com/Forums/en-US/home
    Partners support: https://pinpoint.microsoft.com/en-us/

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  18. Database move activity

    We have faced one issue, as during the database move activity over cloud has enabled few features of the Mailboxes that we have disabled for our domain.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  19. Is there any way to enlarge the widget for 'Origin of threats' - it's the tiniest of heat-maps. I'd love to see it full-screen

    The origin of threats widget is so tiny - as to be nearly useless. It's a fascinating look at detected threat origination - but the widget is so tiny, I'd love to be able to pull up a full-screen view.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  20. Content Search "Item Identity" is not the same as the outlook graph api ID value

    If the content search results file "Item Identity" value matched the id value returned by the outlook ms graph api, I could pull my results via API and avoid filename/path size issues when investigating with my tools. Or give me a way to iterate on these messages without having to download, via powershell, would work OK too.
    Thanks.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base