Azure Information Protection

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Label Creation Gui for Admins.

    Instead of using Powershell scripts, develop an Admin Gui for Mass Creation of Label / permission , incl. csv import.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Proposed  ·  1 comment  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add read functionality to Security Reader roll in AIP or remove the role

    When accessing AIP in the Azure Portal, and you don’t have an appropriate role – an error is displayed enumerating the roles which should give access. This lists Security Reader. But when you have that role, you are only allowed to browse the menus, and most blades show "You don't have one of the following Azure AD administrative roles: [...]"

    Because of the first error, people request Security Reader role access but then when they have they complain they don't have the required (audit) access.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  3. Provide the ability to enable/disable AIP Policy from Portal or PowerShell

    Currently when I create a policy in the portal have to assign a user or group in order to be able to save it. I want the ability to mark a policy as "Enabled or Disabled" and not have to assign a user.
    Rationale for this is that I'm not allowed to have empty AD/AAD groups so I can't use that option. If I'm developing a policy or if I have a policy for a specific limited purpose (e.g. to enable debug logging) I MUST assign a user or group otherwise I cannot save the policy.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add client powershell cmd to check/reset/remove add-ins

    Add a cmdlet to the AIP client that will check the status of MSIP add-ins in each Office app, allow you to reset the status (enabled), and also disable an add-in in a specific app (ex: word). Do this in PS1 without having the user need to open the app and manage the COM add-in.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  5. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  6. Provide Role Based Access Controls (RBAC) in the AIP Admin console

    Provide a granular delegation model for administration of AIP configuration

    62 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  3 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  7. Onboarding Control Exclusion list

    Ability to exclude some members of the tenant being able to use Azure RMS to protect documents. We currently have an onboardingControlPolicy option to include certain users, but this is not helpful when you have a specific AD group of users that should not use encryption for compliance reasons.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow labels to display both business descriptions and protection descriptions

    Rights templates created in the new portal now share the same name and description as the associated label. However, I believe there is a case to use the name and description of the label to give information to help the user to understand the classification of the document in the context of an organisation's Information Classification Policy. Before this most recent change, I found it helpful to use the description of the rights template to summarise the rights that have been assigned. Having the same description for each loses an opportunity for clarity. The user already knows that the document…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Proposed  ·  0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  9. Bring back the "publish" button at the AIP portal

    The two step workflow was much better than the actual direct publishing if we save a policy. I would like to modifiy my settings and discuss it with my colleagues before I make the rollout.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  10. Option to generate reports for Azure RMS protectors, currently none available

    Currently we are not able to generate report for Azure RMS protectors and the current usage reports. We don't have proper logging available and could not get the report using Powershell as well. Need to know how many outlook users are protecting and consuming the ARMS services. This is for License assignment and currently using onboarding control policy and need to shift to license model.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support for Multi-tenant on AIP Scanner

    I have several customer's that have a AD forest with multiple domains. In their migration to Office 365 they are forced to have multi-tenant setup to segregate data. However they share on-prem file servers and SharePoint. To separate the Auto-Labeling and the encryption key they need support for multi-tenant in AIP Scanner

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  12. Enable AIP client to authenticate with Windows Server AD.

    We are working on a strategy to move from on-premises AD RMS to Azure IP; however, we have encountered a blocker in our migration strategy: Azure IP cannot authenticate a user not located in an Azure AD tenant. In this scenario, we have implemented AD RMS in a resource forest and account forest scenario. The resource forest contains AD RMS, the protected content, AD FS, and contact objects of the users in the account forest. The account forest contains the user objects and uses Ping to federate with the resource forest. These user accounts can use any email address suffix…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Proposed  ·  0 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  13. Protection templates section on left pane in AIP Admin Portal

    Policy templates should be made as a submenu on the left pane along with others such as "Policies", "Manage", etc.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Proposed  ·  2 comments  ·  Administration and Admin Portals  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base