Feedback by UserVoice

Microsoft Information Protection (MIP)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Prevent Default to "All" users when removing all users from Label Policies.

    When all users or groups are removed from "Label policies" permission scoping, "All" users are selected by default. This should not be the case. If all users/groups are intentionally removed, the permissions scope should be 'none' rather than 'all' users.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow admins to set UDP permissions and enduser add the approved recipents

    Using AIP unified labels it is desired to have restrictions apply to a specific sub label where protection/encryption is enabled/set by the IT backend. The end user whom labels the document must be able to decide who can access the protected document, when the label is applied

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  3. Allow for information protection to be applied from multiple tenants.

    As a consultant who is frequently given a user account and login for collaboration in a client's tenant, we need to ensure that both our own company data and also the client data is secured. My laptop is enrolled in our organisation's MAM and MDM policies, which works fine, however logging into office applications with a second corporate login allows me to synchronise all files I am given access to, with no protection applied by the client's MAM policies.

    I am told this is by design that the second account's policies are not applied, however if these can not be…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Keyword Dictionary modification

    Allow modification of keyword dictionary item from GUI portal. Currently we can create only

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Viewing Office documents in Online Apps which were protected by 'Custom Permissions'

    Hello,

    it would be great if you could access Office documents which were protected by 'Custom Permissions' in the Online Apps (SharePoint, Teams).

    Best regards

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sensitivity labels in Office applications  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add an Advanced Setting to enforce 'offline access' option from the Protection Template

    Hello,

    we have two options to set the 'offline access' time:
    - in the protection template of a label
    - via PowerShell

    The more restrictive option is always prioritized.

    I would like to have an Advanced Setting which lets me choose which one to enforce per label.

    For example:
    - Label: Confidential \ All Employees (7 days offline access)
    - Label: Strictly Confidential \ Custom Permissions (0 days offline access)

    When I want to enforce the 0 days offline for custom permissions I need to set them via PowerShell.
    But then these 0 days are also enforced for the 'Confidential…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. SCC Admin Alerting in the console

    When configuring a DLP policy through Security and Compliance Center (SCC), there is an option to send alert to admins when a rule match within the DLP policy. When the switch is toggled off, no related DLP alert will show up in the SCC console. When it is toggled on, the alerts show up in the console. Further, when this switch is toggled on, it requires you to put in an email address which will receive the alert. We would like to request a Design Change Request to enhance the product. Below are details of what we would like to…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Exclude Domains across multiple DLP policies/rules

    We have a need to be able to exclude a large list of domains across several DLP rules. We would like to maintain 1 list of domains that can be used in multiple DLP polices/rules. This functionality does not exist today.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Increase excluded domain limit for a single DLP policy

    We would like to request an increase to the current limit of domains that can be excluded in a single rule. I believe that there is a current limit of 500 domains that can be excluded in a rule. We would like to request that this be increased to at least 1000.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow for customization for of pop up in exchange when DLP policy is triggered

    When a DLP policy is in place for exchange and a policy tip is displayed, the user hits send and a pop up is displayed telling the user that the email has been blocked. This blocking pop up reads “This message includes one or more recipients who aren’t authorized to receive sensitive information. Please remove those recipients and try to send the message again”. This differs from the policy tip that we are displaying. We need the ability for this pop up to be customizable based on the DLP policy the user triggers. The user experience is degraded when they…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Remove sensitive information from DLP notification

    When a DLP policy is triggered and a notification is sent back to the user, the notification contains a copy of the original email. The problem with this is that the original email contains the content that triggered the DLP policy in the first place. This further propagates the sensitive information that we are trying to keep out of the environment. The best case scenario would be the sensitive information is masked or truncated prior to being sent back to the user. This scenario will still allow the user to have the context of where the sensitive information exists in…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow for additional custom tokens to be used in DLP notifications

    The customization of DLP notifications allows for the use of “tokens” or variables that provide additional information about the notification. The current tokes available provide limited information which provides little value to the user receiving the information. It would be great if the tokens could include more specific information about the actual DLP event such as:

    -sender/receiver
    -name of DLP policy that was triggered
    -masked/truncated sensitive information (including surrounding text) that caused the DLP event to trigger

    All of these would make the notification more valuable to the end user and would assist in the education and remediation process. Other…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow for manager Cc. on DLP notification

    When a notification is sent to the user for a DLP policy violation, we would like to be able to copy the users manager on that notification. We would like this to occur dynamically (maybe by AD lookup). This would provide another level of protection/accountability. The manager can stay apprised of the information their employees are sending and make sure they are accessing/using resources appropriately.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow for customization of sender/subject for custom DLP notifications

    The DLP notification that is sent to an end user (violator of DLP policy) should be able to be customized so it looks like it is coming from an internal email account and the subject should be able to be customized. This would make the notification more impact. People would recognize that the email was important (based on who it was from and the subject). They would be less likely to ignore the email or report it as Phishing.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  15. MIP integration with Dynamics365

    --> Dynamics365 must be able to consume MIP encrypted documents and e-mails
    --> Dynamics365 should be able to create documents/reports and emails that are MIP classified and protected

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  16. Display document name in prompt

    When multiple documents are attached which has different label from the email label then it is prompting without the document name. It would be better if document name should also come which has different label in the prompt box

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sensitivity labels in containers  ·  Flag idea as inappropriate…  ·  Admin →
  17. For documents apply the label of nested doc if sensitivity of the inserted doc is higher

    When a file is inserted inside a doc the label for inserted doc should apply to the parent doc if the sensitivity of the inserted doc is higher than the parent doc.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sensitivity labels in Office applications  ·  Flag idea as inappropriate…  ·  Admin →
  18. Teams DLP channel vs chat policies

    At the base level we really need the ability to setup different policies for Teams chats vs channels. Hopefully these options would be granular enough to even specify the number of people who could see a chat or a channel. So a 1:1 chat might have a DLP policy, but a chat with more than 3 people might have a flag for example.

    Or a channel in a Team with less than 10 people would have a flag, but if the chanel is available to more than 10 people then we could have a different policy.

    Having options such as…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Conditional Access block unmanaged devices from opening email or accessing teams chat channel

    The sensitivity label capability to block unmanaged devices from SharePoint/Group sites allows us to enable BYOD while containing particularly sensitive documents with compliance requirements to libraries that unmanaged devices can't access.

    However, it's hard to allow this flexibility without a likewise capability on messaging platforms. 99% of our messages do not require restrictions, but due to that 1% requirement, we're faced with two bad choices. We have to block Teams and Outlook entirely from BYOD (which are primarily personal phones used for communication making it particularly poor), or ban communication of sensitive material and set up a secure third party…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sensitivity labels in Office applications  ·  Flag idea as inappropriate…  ·  Admin →
  20. Enforce mandatory labeling in built-in sensitivity labeling in Office

    Mandatory labeling is supported in the AIP clients, it should also work for clients using the built-in labels in Office.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sensitivity labels in Office applications  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 25 26
  • Don't see your idea?

Feedback and Knowledge Base