Feedback by UserVoice

Anonymous

My feedback

  1. 3,725 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    201 comments  ·  Office 365 Security & Compliance  ·  Flag idea as inappropriate…  ·  Admin →

    Azure Active Directory Conditional Access has functionality for “Countries/Regions” – see https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition

    That said, the most effective protection you can have against password spray attacks is to enable MFA and disable basic authentication. If you cannot do this for your entire organization, then blocking user access to legacy protocols like POP, EWS, IMAP and SMTP is another step you can take. Exchange Online Client Access Rules can help you to further customize (https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/client-access-rules/client-access-rules). For additional recommendations, please see Office 365 Secure Score.

    That said, please know that we are listening to feedback and working on solutions to help make Office 365 users more secure. Thank you for the feedback.

    An error occurred while saving the comment
    Anonymous commented  · 

    We have bad actors that make multiple attempts daily to break into our tenant. We need the ability to restrict logins/connection to USA locations only!

    Anonymous supported this idea  · 
  2. 116 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    16 comments  ·  M365 (Microsoft 365) Admin Mobile  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Anonymous commented  · 

    The disclaimer approach is poor at best. The end user composing the email never gets to set unless they receive a reply, it is always appended to the end of the entire message thread, not the most recent message. Why not add a place in exchange to store the signature block (both an HTML version and a plain text version). Add the appropriate controls so the admin can either allow the end user to do their own thing, OR, flip the switch (either on the mailbox itself, or the entire domain) and the end user can no longer update the signature, but it is ALWAYS sent, and appears in the proper place. Switches envisioned:

    -UserCanEdit (true or false)
    -HTMLSignature ",,,,,," (the html....)
    -TextSignature "....." (the textual version, complete with line breaks)
    -ReplyUseSignature (true or false - inserts the appropriate signature for replies to messages, or not)
    -ForwardUseSignature (true or false - inserts the appropriate signature for forwarding of messages, or not)
    -ShowSignatureInEditor (true or false - places a copy of the configured signature into the message at the appropriate location, and allows the end user to manipulate that copy).
    -SignatureOnMobile (true or false - inserts the signature when emailing on a mobile/smart device)
    -SignatureOnOutlookClient (true or false - overides what is configured in the Microsoft Outlook Desktop application for signatures)
    -

  3. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General » Users, Photos, Contacts  ·  Flag idea as inappropriate…  ·  Admin →
    Anonymous shared this idea  · 
  4. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
    Anonymous shared this idea  · 
  5. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
    Anonymous shared this idea  · 

Feedback and Knowledge Base