Feedback by UserVoice

Office 365 Security & Compliance

We have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

Welcome to the Security (Protection) & Compliance UserVoice forum. We’re happy you’re here! If you have suggestions or ideas on how to improve Security or Compliance related features in O365, we’d love to hear them!

How it works
◾Check out the ideas others have suggested and vote on your favorites
◾If you have a suggestion that’s not listed yet, submit your own — 25 words or less, please
◾Include one suggestion per post

Thanks for joining our community and helping improve these features in Office 365!

Need Tech Support? Please see the O365 Community for the product or feature you are having issues with, or open a support ticket through your Office 365 administrator portal.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Settings to opt out

    Hi
    Could you please help me adjust the settings to never receive the notification regarding my received spam? As I am receiving so much spam at this work email, I’d like to get it quarantined and deleted, without being notified each time.
    Thank you,
    Natalia

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Illegal data collection Office 365 MAC

    If you install Office 365 for MAC you get the question if you want to share full diagnostic data or basic diagnostic data, but you can’t select no data. According to the EU law this is not allowed (ref. https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32016R0679).

    Of course, you are collecting anonymized data (at least this is what you say), but technically you need an identifier (unique ID) for receiving data. This UID represents the customer and therefore this is personal data. If you really use no UID, there are technical solutions to analyze big data and find a specific information.

    You are allowed to…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  3. Why is there no link in admin center?

    Put a link in Admin Center to protection.office.com

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Options to Automate Message Trace reports

    There would be a need to automate the Message Trace by allowing to schedule message trace on a frequent period and give more options like to show the numbers of emails transacted, how many have failed or delivered.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Message Trace  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add the ability to search for hyper links or web URLs which are part of email.

    Add the ability to search for hyper links or web URLs which are part of email.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  6. Trigger an alert when a user sends more than 30 emails a minute. Would indicate they have been compromised.

    We had someone get their password compromised and the bad guy sent 2000 emails in 45 minutes. If we had this trigger we could have caught it sooner.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  7. Hourasa

    Hourasa

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  8. Create Search feature will be moved from EAC but permissions will not

    If this feature will be removed from EAC, permissions should be replicated to the Security & compliance module, or admins should be notified ahead of time of doing so, that way there's no disruption or loss of the funcitionality.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  9. Obtain every data configured in Reports for Download all together

    It would be great if we can export all the data in .csv file when obtaining multiple report data at once from SCC. Admins can receive emails for the submitted report request but it covers only each of the reporting category, and it takes time to check all the data we need.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow Office365 labels to reference external data for retention trigger, e.g. BCS

    In SharePoint we can reference an external data source for a retention trigger, using BCS (Business Connectivity Services). This would allow us to trigger a retention event based on some external event such as the date an employee leaves the company. Apparently this is not possible now with Office365 policies/labels, but I think it would be a very useful feature.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Compliance Manager  ·  Flag idea as inappropriate…  ·  Admin →
  11. Labels need Order By Setting for UI

    Currently Labels are grouped by retention period. We have many divisions and departments, each with their own different legal nuances. Therefore, our labels are grouped by division. Having the ability to order labels by Alpha would be very helpful

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. deleted emails want to restore in users mail box without exporting complete pst through e discovery

    automatically we should have option to restore emails in users mailbox if someone deleted emails from his mailbox .. through e discovery we have option to restore but we have download complete pst which is hectic job.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  eDiscovery  ·  Flag idea as inappropriate…  ·  Admin →
  13. New

    Great Excellene

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Service Trust Portal  ·  Flag idea as inappropriate…  ·  Admin →
  14. Secure Score - Doesn't take in account for CA policies

    The secure that rules if you have enabled MFA in you organization doesn't take account for if you are utilzing MFA via CA. Please score after this

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add What New to S&C Portal

    There should be a What's New page in the Security and Compliance center that clearly lists all of the changes made to this center

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. rusmadimancak@gmail.com

    Melamar pekerjaan

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Add Security & Compliance to Service Health

    Problems with and of the S&C related services should be reported in the O365 Admin Center Service Health page

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →
  18. OneDrive sync client will enable B2BSync

    I have read this update and I think it is not a good idea

    A permanent synchronization with external users is an open door, a pipe in a Tennant and this is not good

    Actually, if a user synchronizes their computer, the decision is business, empresarial, and the computer / device with which it is synchronized must be under the domain of the company and with that security.

    But if OneDrive is synchronized with a user external to the organization, the door must be permanently open, traffic must be permanently available and the security is responsibility of Microsoft. The external…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ensure that all events contain a user ID

    I have run across numerous events for user logons that have a "UserId":"Unknown". While I can track down who the user is when doing a deeper search using the IP Address I do not see how it is possible for there to be a logon event with an Unknown user ID. Feel free to contact me to discuss. : {"CreationTime":"2019-09-18T02:04:35","Id":"removedfromoriginallogmessage","Operation":"UserLoggedIn","OrganizationId":"removedfromoriginallogmessage","RecordType":15,"ResultStatus":"Succeeded","UserKey":"Not Available","UserType":5,"Version":1,"Workload":"AzureActiveDirectory","ClientIP":"197.253.23.6","ObjectId":"Unknown","UserId":"Unknown","AzureActiveDirectoryEventType":1,"ExtendedProperties":[{"Name":"UserAgent","Value":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763"},{"Name":"RequestType","Value":"OAuth2:LogoutSession"},{"Name":"ResultStatusDetail","Value":"Success"}],"ModifiedProperties":[],"Actor":[{"ID":"Unknown","Type":0}],"ActorContextId":"removedfromoriginallogmessage","ActorIpAddress":"197.253.23.6","InterSystemsId":"removedfromoriginallogmessage","IntraSystemId":"removedfromoriginallogmessage","SupportTicketId":"","Target":[{"ID":"Unknown","Type":0}],"TargetContextId":"removedfromoriginallogmessage","ApplicationId":"","LogonError":"None"}

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Auditing  ·  Flag idea as inappropriate…  ·  Admin →
  20. Advanced Threat Protection

    Kill this *** piece of .

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Advanced Security Management  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base