Feedback by UserVoice

Microsoft Information Protection (MIP)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Use AI to give recommendation how to classify

    It would be cool to have AI in the Background that learns from already classified Documents of one Department or Businessline how critical expressions are related to each other and lead into a certain classification. With this AI-Knowledge the System would be able to recommend or auto-classify new or not yet classified old Files in the right way. This would lead into less manual confiured sensitifity types.
    Focus of this idea should be the improvement of the recommendations in a first step without the need of manual configuration.

    25 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  2. Support "Line breaker /n" in content marking

    Support the new line code when entering the text of the marking in the header in Office365 security and compliance center..

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  3. Add an Advanced Setting to enforce 'offline access' option from the Protection Template

    Hello,

    we have two options to set the 'offline access' time:
    - in the protection template of a label
    - via PowerShell

    The more restrictive option is always prioritized.

    I would like to have an Advanced Setting which lets me choose which one to enforce per label.

    For example:
    - Label: Confidential \ All Employees (7 days offline access)
    - Label: Strictly Confidential \ Custom Permissions (0 days offline access)

    When I want to enforce the 0 days offline for custom permissions I need to set them via PowerShell.
    But then these 0 days are also enforced for the 'Confidential…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  4. Ability to classify data in SharePoint page level lists, task lists and calendar content.

    Ability to classify data at rest in SharePoint page level lists, task lists and calendar content. At this time only documents posted to SharePoint on premise or O365 can be classified and reported against. We have a large number of page level lists that are not attached documents that contain sensitive data that we would like to have awareness of in order to ***** the risk of transitioning it from on prem to SPOL.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add AWS API Key as a built-in sensitive info type

    Add Amazon Web Services (AWS) API key strings to the list of available sensitive info types

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Support Encrypt Only as a label protection policy for emails

    Encrypt Only is available in Outlook as a stand-alone option. In the same way a label can apply Do Not Forward, allow admins to define Encrypt Only as the action applied by a label.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  7. Separate teams DLP channel and chat policies

    At the base level we really need the ability to setup different policies for Teams chats vs channels. Hopefully these options would be granular enough to even specify the number of people who could see a chat or a channel. So a 1:1 chat might have a DLP policy, but a chat with more than 3 people might have a flag for example.

    Or a channel in a Team with less than 10 people would have a flag, but if the chanel is available to more than 10 people then we could have a different policy.

    Having options such as…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Remove "People with the link" link type on a tenant level

    Currently, removing the "People with the link" sharing option is only possible per site:
    Set-SPOSite -DisableCompanyWideSharingLinks Disabled -Identity $siteUrl

    Considering that the recommendation from Microsoft is to allow all FTEs to create O365 Groups (therefore, SPO sites), disabling this link on every new site would require automation (adds complexity, costs) and would be done with delay.

    Our Chief Security Officer sees it as a security threat, and to limit accidental exposure, requested this sharing link to be disabled on a tenant level (with an option to enable it per site).

    The following would be very useful:
    Set-SPOTenant -DisableCompanyWideSharingLinks

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  9. Make IRM-enabled Sharepoint library apply ISO format pdf

    Currently, IRM-enabled SPO libraries protect pdf files using the v1 format (.ppdf), but with the extension .pdf.
    Adobe's MIP/AIP plugin only supports the ISO compliant (v2) format protected pdf. To open a v1 pdf, users must actively use a different pdf reader or the AIP viewer.
    Switching to the ISO compliant pdf format would bring a more consistent user experience and less support.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    We're working on it!  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Authenticate guest users with Azure AD B2B collaboration to open encrypted files

    It is troublesome for guest users to create an account with personal RMS in advance. Authenticate guest users with Azure AD B2B collaboration (and Onetime Passcode in preview) will be comfortable.
    This helps reduce collaboration using password-encrypted zip files.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. When a label policy is not assigned to any users, it should not become a Global policy but a policy assigned to no one.

    When all users or groups are removed from a label policy , "All users" becomes selected by default. This should not be the case. If all users/groups are intentionally removed, the policy's scope should be 'none' rather than "all users".

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Show who applied the sensitivity label and when

    If a document/email has been classified/labeled using the AIP Classic client, the AIP Classic client shows the email address of the user who applied that label (when hovering the mouse on it in the Information Protection Bar).

    This feature is not present anymore in Unified Labeling, reportedly "by design".

    It would be useful to have as a configuration option in MSCC the capability to include among the properties of the document/email, also the name / email address of the user who applied at least the last/current classification label, and the date it was applied.

    (Just as a reference, our bespoke…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  13. Count sensitive types occurrences with Unique Values only

    Use Uniqueness as a factor in determining condition for automatically applying, as it was available in classic labeling.

    Leaking the same piece of information in an email once or ten times is not different. What matters is what information is being leaked so uniqueness is a critical factor, otherwise this leads to false positives and prevents users from paying attention to actual alerts.

    Medical: ID could be used in forms to patient or partner, by attaching multiple forms or filling in the same information into multiple pages causing false alerts.
    Financial: Same SSN could be in multiple attachments in a…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  14. Improve design of classification bar as part of Office ribbon

    Classification bar to be placed inside(!) upper toolbar or left/right of an document, for example in Word. Reason: Monitors are landscape format and the MIP bar reduces the working area further more.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  15. Enable Email notifications for completion of scans

    Enable Email notifications for completion of scans via gui or PS.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Copy manager on warn, justify, or block email sent policy

    Outlook email flow rules give you the ability to send a copy of a message to a manager when a user chooses to send an email that falls into the warn, justify, or block policies. It would be nice if we could do that with Microsoft Information Protection

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Outlook Popup notifications should be customizable

    In advanced settings, when using the warn, justify, or block popup, it would be nice to be able to customize the information in those dialog boxes. You can do this for a standard email flow rule.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Allow for manager Cc. on DLP notification

    When a notification is sent to the user for a DLP policy violation, we would like to be able to copy the users manager on that notification. We would like this to occur dynamically (maybe by AD lookup). This would provide another level of protection/accountability. The manager can stay apprised of the information their employees are sending and make sure they are accessing/using resources appropriately.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  19. MIP integration with Dynamics365

    --> Dynamics365 must be able to consume MIP encrypted documents and e-mails
    --> Dynamics365 should be able to create documents/reports and emails that are MIP classified and protected

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  20. Ability to apply a different custom OME template depending on the user's Outlook language setting

    We have employees that work in English and some in French. We would like to be able to apply a specific OME configuration template (i.e. French) based on the user's Outlook language setting and the label applied.

    So basically, that would mean that we would like to have a transport rule that applies a specific OME template based on the language and the label applied. As of now, we cannot have a condition that looks at the email header for both the label and the language setting.

    This feature would be a life saver for us!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  OME  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base