Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Release Quarantined Emails From Threat Explorer

    When working primarily out of the Threat Explorer, you can identify emails that have been quarantined. However, releasing or deleting those emails can only be done when manually navigating to the quarantine page. You should be able to release/delete these messages via the Threat Explorer rather than having to work out of different areas to complete this.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  2. enable touch ID with Sharepoint mobile (Outlook mobile has it)

    enable touch ID with Sharepoint mobile (Outlook mobile has it)

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  3. Search option for identifying malware domains in Office 365 Admin panel

    How do we identify in O365 Admin panel about domain being marked as malware. Recently we had hard time in identifying this and O365 support team took 10 days to find this resolution for our mails being marked as PHISH instead of SPAM.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add the ability to filter real-time reports by the custom anti-phishing policy so that we can see the amount and which emails are impacted.

    This report is within Security and Compliance>Threat Management.

    It currently only shows the technology, the protection policy is listed as a code which is impossible to decipher. There is no way to tell if it as result of a custom anti-phishing policy. It only implies the technology.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  5. Send a notification when a Global Admin changed the specific Company resources, such as mailbox or account in Office 365 Security & Complian

    Please add a feature to send a notification to monitor if Global Admin changes the certain tenant information to avoid the unexpected change on users or mailboxes.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. it would be great if MS can find a solution on auto download pictures from external sender instead of whitelist the sender

    it would be great if MS can find a solution on auto download pictures from external sender instead of whitelist the sender

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. MS Stream - Default change to share option

    Alter the current default section of share with 'everyone in the business' to 'only me' to avoid employees accidentally sharing personal and/or sensitive data with the entire organisation.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  8. Security / Compliance Center Junk E-mail IP block does not appear in Show Detailed Table

    Security / Compliance Center Junk E-mail IP block does not appear in Show Detailed Table

    セキュリティ/コンプライアンスセンター迷惑メールの IP ブロックが、 [詳細な表の表示] に表示されない

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Malware  ·  Flag idea as inappropriate…  ·  Admin →
  9. Powershell, powershell, powershell...

    ...if you need more than just the title, you haven't been paying attention to your customer base over the past 6 years.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow E-Discovery for Exchange Online Archiving

    We are at the moment in a hybrid scenario where part of our users have their mailboxes on premise and the archives in Office 365. Recently we noticed that we do not have any option for actually exporting the Exchange Online Archive contents to a pst, outside of doing it from Outlook (we are in a Citrix environment and users are located in different countries so that would not be easy).
    It would be great if we had an option to search/export the archive contents for hosted archives.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  11. Advanced Threat Protection and Safe Links

    We had an email with a link that was pointing to web page with multiple link, none of them safe. One of the Phishing URL brought up a spurious Microsoft Office login page. The Safe Link process of ATP failed to stop this email which was delivered as safe. Safe URL scanning should check everything, going as deep as needed to check for possible threats.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. Improve support for mailing lists in spam/phishing filtering

    When users are sending messages via a mailing list (mailman, for example), there is often a mismatch between the From: Header and the Sender: Header , there the From: is the real sender while Sender: is the mailing list's address. Most mailing lists implement this so replies work properly and so SPF works correctly. EOP/ATP sees this as a phishing attempt (which, admittedly could be the case). Adding the mailing list to the allowed senders does not work as ATP seems to be checking the From: header only, so stuff still gets blocked. Premier support always suggests creating transport rules…

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Spam & Phishing  ·  Flag idea as inappropriate…  ·  Admin →
  13. quarantine is ridiculously ineffective waste of time!

    Quarantine is ridiculously ineffective waste of time! You've created a mess that takes FOREVER to clear and the messages being quarantined are from regular senders. It's not working. It's useless and overly BUREAUCRATIC!!!! GET A LIFE!!!

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Delist IP image does not work

    I'm trying to request the removal of an IP Address for sending emails, via https://sender.office.com/, however i cant get the verification image to work. Everytime i enter the 8 characters it says "The characters didnt match the picture". I've tried about 20+ times, any suggestions?

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add support for epub-3 files in Exchange threat filter

    Currently epub-3 files are being blocked as malware in exchange threat management. Please review the filters and/or scan engine so that these valid files can go through.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  16. not seeing channel or private channel names in communication compliance policy results

    Not able to see Channel or Private Channel names or pchat group names in results. It makes it extremely difficult to distinguish where the results are from. Even between chat and channel is difficult - the only way to know is looking at the recipient name. It would be great if there were columns for TEAM Name, Channel Name, Private Channel Name, and pchat group name, etc.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Communication Compliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. Loan and CD account numbers

    Please include Loan numbers in the U.S. bank account number definition. Most other types of bank accounts are in there but types of loans (mortgage, HELOC, etc)

    Also, certificate of deposit numbers

    Thanks

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  DLP & Transport Rules  ·  Flag idea as inappropriate…  ·  Admin →
  18. Release a Phishing Login server URL from the security blocker

    I would like you to release a Phishing Login server URL from the security blocker in the users’ environment. The URL is set when simulating a phishing attack by using Attack Simulator in Office 365. Because it would be blocked, we can’t review the page shown after entering credentials, and we can’t actually test the effects. So I would like you to release the URL from the blockers in a security software or browser security.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  19. License report

    Create license reports per O365 subscription. example: E1, E3, Project Online, Visio, Power BI, E5, etc? with end user login, UPN, Country, purchase date, last usage date.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  20. How do you find messages you accidentally "removed from quarantine"?

    I accidentally clicked "remove from quarantine" thinking it was "releasing" and now I can't find the message. Please help?

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base