Feedback by UserVoice

Microsoft Information Protection (MIP)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Certificate Mismatch workaround option for Outlook Mobile

    Certificate Mismatch is a common situation across DoD where a user’s CaC was originally used with one email address (john.doe@mail.mil), however the user’s email address may actually be john.doe@unit.mil. It’s commonplace for users to move between joint commands creating a mismatch. There is verified Customer impact for USAF, USMC, Army, Navy and USACE. All use the current workarounds on-premises and cloud for both Outlook and OWA. Current workarounds only exist for Outlook desktop client (SupressNameChecks at https://support.microsoft.com/en-us/help/276597/how-to-turn-off-e-mail-matching-for-certificates-in-outlook ), and OWA (AllowUserChoiceOfSigningCertificate at https://support.microsoft.com/en-us/help/2497165/sending-s-mime-encrypted-mail-from-owa-returns-the-error-outlook-web-a ), but no workaround exists for Outlook Mobile.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  2. Prevent end users from manually selecting a label used for auto classification

    Desired functionality:
    Create a label for automatic classification, add the label to a label policy, but prevent end users from manually selecting that label or hide the label from end user view.

    Current functionality:
    In order for an automatic label to function it has to be added to a label policy, but this, in turn, allows end users to manually select this label. This creates a gap because it is logged as an automatically labeled file/email which is to be believed that it was labeled automatically based on a ruleset.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  3. Provide "Know Your Data" reports to knowledge workers

    Provide "Know Your Data" reports for knowledge workers to consume so that they can see which of their files have been been auto-labelled which will enable them to take action against files that may contain GDPR/PII information

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  4. OneNote - Sensitivity Labels, Data Protection, eDiscovery

    Please add the ability to label content in OneNote with Sensitivity labels, add auto labeling, and for eDiscovery to be able to search user OneNotes to tag for hold. We need to be able to scan data and understand if it needs to be labled because of PII or confidentiality.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  5. Free positioning of multiple visual markings in Word and PowerPoint

    I'd like to be able, to completely freely place the container, where the visual marking is printed inside a document. Currently it is always inserted at a fixed position. I also want to be able, to insert multiple containers for visual markings inside a document, which are updated, when the label is set or changed.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  6. Allow the export of AIP Analytics logs to other Azure environments.

    Want to use another Azure environment to host AIP analytics workspace. 2 Scenarios:
    1) GCC O365 into MAG
    2) Supporting multiple O365 environments into Azure environment

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow DLP/autolabeling rules to have multiple triggers with different actions depending on severity and context.

    We have several use cases where we have documents with labels however we don't necessarily want to protect them unless certain criteria is met.

    The use cases would be the following:

    1- Document is labeled as confidential without protection and can be shared internally however if the document is sent outside of the organization then protection needs to be applied. The actions are logged.

    2- Document is labeled as confidential without protection and when an user attempts to send it outside the organization via e-mail, the policy prompts the user with a warning or justification and also asks if the…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  8. When UDP rights are changed using built-in sensitivity labeling or the rights interface, change the policy ID

    Currently, if UDP rights are changed through AIP labels, a new value is used for the TemplateID field in the document's policy. This is not the case when the rights are changed via the built-in rights menus or the built-in sensitivity label option in Office (preview).
    This is important since it allows users to use document templates to store combinations of rights, and still be able to treat documents based on such templates as separate documents for the purposes of tracking, revocation, DLP analysis and reporting.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  9. We need a GUI for OME Branding in the Exchange Admin panel.

    Some things work better on the command line. This is not one of those things. Being able to update text, and graphics with a live example of how the message will look is critical to success here. The support article doesn't talk about verification. What's the workflow here? Run some PowerShell commands, send an e-mail, wait, look at the formatting, and then try again? That's not an efficient way to edit a visual style. The editor should be like a WYSIWYG editor. As you change the elements on the right sidebar the content in the middle changes, showing what the…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  10. Block User Non-TLS Connections To Exchange

    Currently, users connecting to an O365 mail server may do so over a Non-TLS connection.

    To my surprise Microsoft confirm that these non-secure connections cannot be blocked.

    This allows users to intentionally or unintentionally configure mail readers to connect over a non-secure connection.

    Blocking non-secure connections to a mail server has been a feature available to many mail servers on Linux for over a decade.

    Please consider supporting a feature to block Non-TLS connections.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  11. In O365 built-in labeling automatically label email with same protected label as attachment

    : It used to be that with the classic AIP client when you sent an email with a protected attachment that it would automatically set the email to have the same label/protection.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  12. Allow user defined Encrypt Only in addition to DNF for sensitivity labels

    We would like to have an encrypt-only option for outlook when allowing users to define the permissions for a unified sensitivity label in addition to the option of DNF (do not forward) in outlook.

    There are certain circumstances were we only want encryption but don't want people to shy away from unified labels.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Merged  ·  0 comments  ·  Sensitivity labels in Office applications  ·  Flag idea as inappropriate…  ·  Admin →
  13. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Automatic RMS template cleanup in macOS during offboarding

    Currently in macOS it looks like RMS templates are not automatically removed when a user removes their account in Outlook and/or when they remove their machine from Intune enrollment.

    The cleanup should be automatic, as in such cases when an employee with a BYOD machine leaves the company they still have remnants of the RMS templates in their personal Outlook config.

    Currently the workaround is to force a refresh of the RMS template, which deletes all previous templates and remove the RMS token cache. This should be automated.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  15. Encrypted message indicator on SENT messages is needed

    Outlook does not show the encryption status of messages sent. After sending an encrypted message, there is no way to show that it was actually encrypted.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Rights Management  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow more sensitive info types to be added to a single Sensitvity label for auto labeling

    With the classic AIP portal and client we could add many sensitive info types to the automated labelling function (e.g. 100 types in one label).

    We have moved to unified labelling as obviously it makes sense longer term, however are are restricted to about 25 sensitve info types per label.

    This is not useful when it was available in classic and when our company data classificaiton policy has been based on that function. Now we cannot automatically label more than 25 info types as 'Secret' as we have planned and documented.

    This limitation is the same as in DLP policies…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

  17. AIP Viewer - configurable link in "Learn More"

    In the AIP client I can configure the "Tell Me More" link in Help & Feedback to point to an internal website via an advanced configuration setting.
    The AIP Viewer has a "Learn More" link which takes me to an external Microsoft site. I'd like to be able to configure this link to point to my own site.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Business justification for Policy Tip should not be a free text field

    The business justification for a Policy Tip is currently a free-text field and allows users to simply hit the space bar to continue sharing the content. It would be better to have a drop-down or radio buttons with the following options:
    1. I did not know transferring this data was restricted.
    2. This is part of an established business process.
    3. My manager approved this transfer of data.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Support opening ".log" file type

    Enable the Azure Information Protection app to open the ".log" file type. This is simply a text file with a ".log" extension. AIP can already open ".txt" files.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Information Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow for ANY matches in addition to character proximity number values in DLP alerts

    In addition to character proximity values for keywords and supporting element keywords, perhaps allowing for ANY match as triggering the alert.
    Ex. Keyword A must be present and any other supporting element keywords regardless of proximity to the required keyword.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Loss Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base