Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Disable/Gray out the de-duplication checkbox for bulk/combined eDiscovery exports

    In the eDiscovery portal of the Security & Compliance Center, we create several Searches in a single case, when we select all search tasks to bulk export to one PST file, we will notice a checkbox to let us enable or disable de-duplication. However, for bulk export, de-duplication is enabled by default per product design, the checkbox does not make any difference. Can we gray out/disable the checkbox for bulk export to avoid confusion?

    Design:
    • When you export the results of multiple searches, the search queries from all the searches are combined by using OR operators, and then the…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  2. Can't read the CAPTUA sysbols. Way too hard.

    Cat down the number of symbols or/make them easier to read.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. DLP rules are not working, if we share no. like Credit card, Aadhar card, PAN card, it is working only, if we type text like i am sharing my

    DLP rules are not working, if we share no. like Credit card, Aadhar card, PAN card, it is working only, if we type text like i am sharing my Credit card, Aadhar card, PAN card and sharing no. along with that...

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  4. I logged in to the 365 Security and Compliance Center and have lost all permissions for content searching and eDiscovery.

    I logged in to the 365 Security and Compliance Center and have lost all permissions for content searching and eDiscovery 6-22-2017. All I can see if audit log search. What is Microsoft doing? This is really critical. We need to do FOIA and legal searches as well as phishing email searches. Can someone from Microsoft please help?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  5. Executable file restrictions are not customized in EOP when compared to other third party applications like Symantec, Dell, Iron-pot

    It is required to have better customization of blocking Executable file with end user notification like sender and recipient. These possibilities are available in Third party application like Symantec, Dell and Iron-pot when compared to EOP. Even I have discussed with Microsoft Tech team about this and they confirmed that the customization is not possible in office365 EOP.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  6. MSN and Bing Outlook not Working

    When I check my outlook mail it works when I check it with Bing or Msn they are unread

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  7. Microsoft Office Key Scam 800-596-1743

    there is a phone Scam claiming that your Microsoft Office license keys have expired. Phone Number this come in on is 800-596-1743. call center in India insists that your office package will expire, and they are hired by Microsoft to help make sure your system and office does not quit immediately. they also stated that MS doesn't do auto- renewal, which is blatantly false.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  8. Deploy a high availability architecture in order to ensure the service for Outlook

    Recently an issue with one of your Exchange server impact users of many tenants with mail service interruption during several hours.
    With a high availability architecture you would have a secondary server to ensure the SLA for the Outlook users.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  9. OneDrive Security Validation Adjustment / Allow Long File Uploads

    Currently, it is not supported for OneDrive customers to upload (via O365 Web Portal) for more than 30 minutes at a time. This makes large file transfers to OneDrive impossible. A security validation error occurs at 30 minutes and that validation setting (making it larger than 30) cannot be changed for O365 online. This setting can be changed with an on premise installation.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  10. select recipient policy

    Possible bug? When creating a new spam policy and adding a condition, not all recipients appear, therefore cannot be added to "If recipient is".
    This works perfectly under the older Exchange Admin Centre

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  11. Quarantine Notification include all type/flaggs

    Hi,
    Can you escalate this information because our customers need to receive notifications from quarantine@messaging.microsoft.com including standard / flagged mails:
    • Mail quarantined because it is a match set by a mail flow rule (also known as a transport rule)
    • Mail identified as bulk mail
    • Mail identified as phishing mail
    Mail quarantined because it contains malware
    • Mail identified as spam

    Is this request already in progress?
    Will modifications be made?
    Thank you in advance for your feedback.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  12. User managed personal content filtering

    The junk email folder should be used by O365 to provide user-level filtering. I learned recently during a support case with O365 that the cloud Exchange service does not "learn" from items that people move into their junk email folder what content an individual user considers spam or phishing or malware. It appears that moving things to junk is the same as moving it to the deleted items folder. This is a serious omission. The junk folder should be used to analyze content or other factors that a user considers spam and filter accordingly. Using the tenant wide spam and…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  13. I would very much appreciate that we include litigation hold in Office 365 Business premium

    I would very much appreciate that we include litigation hold in Office 365 Business premium

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. We need to disable the NDR mesages to sent back to sender if the e-mail address does not exists in environment.

    We need to disable the NDR message sent back to sender , if the recipient address does not exist.

    E.g: If mail@abc.com sends an e-mails to smtp@xyz.com recipient, and smtp@xyz.com is not a correct address or recipient has left the organization and e-mail address is not present. Our we do not want the NDR message sent to sender.

    Most of time spam tries to send mails and NDR helps them to know about the recipient status.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. spam filter should be high priority than End user Safe and Blocked senders

    End user Safe and Blocked senders is ovride company spam filter and will be out off control

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  16. Data Loss Prevention Policy - allow user notification to be either an email or a policy tip.

    Currently, you can only choose both and you can not choose one or the other.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  17. Do Not agree with many Office 365 ATP Safe Attachments decisions. Fix criteria!

    Do Not agree with many Office 365 ATP Safe Attachments decisions. Fix criteria

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  18. How do you override a blocked link I sent to myself?

    There is nothing wrong with this Smartsheets link I was just using on another laptop 3 seconds ago, I cant work now.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Remove the Asterisk on the new eDiscovery Content Search page for Keyword Parameter

    The new eDiscovery Content Search page on Security & Compliance center includes an asterisk next to "Keywords" saying it's a required field. It is NOT a required field and is confusing. Also - the SAVE button on the accounts page is below the bottom of the page, you should move it to next to the X at the top. I can't tell you how many times I've accidentally closed it when I meant to save it.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  20. When I detect ATP, I want to be able to set spam [add text to the head of the subject line as well as filter] setting

    I want to make it possible to add [text to the beginning of the subject line] in addition to [Monitor] etc. when the ATP is detected
    In a transport rule, there is a method of bypassing a file with a specific extension detected by ATP
    However, if you want to set [add text to the beginning of the subject line] for all detected ATPs

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base