Updates from: 03/31/2021 03:15:57
Category Microsoft Docs article Related commit history on GitHub Change details
admin Remove Former Employee https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/add-users/remove-former-employee.md
description: "Follow this checklist to remove an employee from Microsoft 365 and
# Remove or Delete a former employee -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-
-
## Sign out now! ::: moniker range="o365-worldwide"
admin Restore User https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/add-users/restore-user.md
description: "Learn how to restore deleted user accounts and all associated data
# Restore a user--
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- When you restore a user account within 30 days after deleting it, the account and all associated data are restored. The user can sign in with the same work or school account. Their mailbox will be fully restored. To find out how much time remains before a specific user account can no longer be restored, [contact us](../contact-support-for-business-products.md).
admin Add Another Email Alias For A User https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/email/add-another-email-alias-for-a-user.md
description: "Learn how you can have more than one email address, called email a
# Add another email alias for a user--
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- This article is for Microsoft 365 administrators who have business subscriptions. It's not for home users.
admin Change Email Address https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/email/change-email-address.md
description: "Change your initial email address to a friendly email address like
# Change your email address to use your custom domain -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- **[Check the Domains FAQ](../setup/domains-faq.yml)** if you don't find what you're looking for. ::: moniker range="o365-worldwide"
admin Create Edit Or Delete A Security Group https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/email/create-edit-or-delete-a-security-group.md
description: "Learn to create, edit,or delete a security group."
# Create, edit, or delete a security group in the Microsoft 365 admin center -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- On the Microsoft 365 **Groups** page, you can create groups of user accounts that you can use to assign the same permissions to in SharePoint Online and CRM Online. For example, an administrator can create a security group to grant a certain group of people access to a SharePoint site. Only global and user management administrators have permissions to create, edit, or delete security groups; for more information about administrator roles, see [Assigning admin roles](../add-users/assign-admin-roles.md). There are also [Groups in Exchange Online and SharePoint Online](#groups-in-exchange-online-and-sharepoint-online) that you can use to send email or assign permissions to a group of users, and [Groups in Exchange Online and SharePoint Online](#groups-in-exchange-online-and-sharepoint-online) that grant users rights and access to sites and site collections.
admin Remove License From Shared Mailbox https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/email/remove-license-from-shared-mailbox.md
description: "Remove license from a shared mailbox to assign it to another user.
# Remove a license from a shared mailbox -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- Shared mailboxes usually don't require a license. Follow these instructions to remove a license from a shared mailbox so that you can either assign it to a user or return the license so that you aren't paying for a license you don't need. > [!NOTE]
admin Buy A Domain Name https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/get-help-with-domains/buy-a-domain-name.md
description: "Learn how to buy a domain name in Microsoft 365."
# Buy a domain name -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- *To Add, modify or remove domains you **must** be a **Global Administrator** of a [business or enterprise plan](https://products.office.com/business/office). These changes affect the whole tenant, *Customized administrators* or *regular users* won't be able to make these changes.* **[Check the Domains FAQ](../setup/domains-faq.yml)** if you don't find what you're looking for.
admin Remove A Domain https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/get-help-with-domains/remove-a-domain.md
description: "Learn how to remove an old domain from Microsoft 365 and move user
# Remove a domain--
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- **[Check the Domains FAQ](../setup/domains-faq.yml)** if you don't find what you're looking for.
admin Change Address Contact And More https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/change-address-contact-and-more.md
description: "Learn how to make changes to your organization profile, such as or
# Change your organization's address, technical contact, and more--
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- You can make changes to your organization profile, such as your organization name, address, phone, and technical contact. **You must be a global admin to update this information.**
admin Customize The App Launcher https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/customize-the-app-launcher.md
description: "Create quick links to your email, documents, apps, SharePoint site
# Add custom tiles to the app launcher -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- In Microsoft 365, you can quickly and easily get to your email, calendars, documents, and apps using the App launcher ([learn more](https://support.microsoft.com/office/79f12104-6fed-442f-96a0-eb089a3f476a)). These are apps you get with Microsoft 365 as well as custom apps that you add from the [SharePoint Store](https://support.microsoft.com/office/dd98e50e-d3db-4ecb-9bb7-82b189822d43) or [Azure AD](/previous-versions/office/office-365-api/). You can add your own custom tiles to the app launcher that point to SharePoint sites, external sites, legacy apps, and more. The custom tile appears under the app launcher's **All** apps, but you can pin it to the **Home** apps and instruct your users to do the same. This makes it easy to find the relevant sites, apps, and resources to do your job. In the below example, a custom tile called "Contoso Portal" is used to access an organization's SharePoint intranet site.
admin Manage Addins In The Admin Center https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/manage-addins-in-the-admin-center.md
description: "Learn about using Centralized add-ins to deploy add-ins to users a
# Manage add-ins in the admin center -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- Office add-ins help you personalize your documents and streamline the way you access information on the web (see [Start using your Office add-in](https://support.microsoft.com/office/82e665c4-6700-4b56-a3f3-ef5441996862)). After an admin deploys add-ins for users in an organization, the admin can turn add-ins off or on, edit, delete, and manage access to the add-ins.
admin Manage Deployment Of Add Ins https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/manage-deployment-of-add-ins.md
description: "Learn to deploy add-ins to users and groups in your organization b
# Deploy add-ins in the admin center -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- Office add-ins help you personalize your documents and streamline the way you access information on the web (see [Start using your Office Add-in](https://support.microsoft.com/office/82e665c4-6700-4b56-a3f3-ef5441996862)). As an admin, you can deploy Office add-ins for the users in your organization by using the Centralized Deployment feature in the Microsoft 365 admin center. Centralized Deployment is the recommended and most feature-rich way for most admins to deploy add-ins to users and groups within an organization. For more information on how to determine if your organization can support Centralized Deployment, see [Determine if Centralized Deployment of add-ins works for your organization](centralized-deployment-of-add-ins.md).
admin Release Options In Office 365 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/release-options-in-office-365.md
description: "Learn how to set up the release option for new product and feature
# Set up the Standard or Targeted release options -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- > [!IMPORTANT] > The Microsoft 365 updates described in this article apply to Microsoft 365, SharePoint Online, and Exchange Online. These release options are targeted, best effort ways to release changes to Microsoft 365 but cannot be guaranteed at all times or for all updates. They do not apply to Microsoft 365 Apps, Skype for Business, Microsoft Teams, and related services. For information about release options for Microsoft 365 Apps, see [Overview of update channels for Microsoft 365 Apps](/deployoffice/overview-update-channels).
admin Share Sites With External Users https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/share-sites-with-external-users.md
description: "Learn how to share sites and files with people outside the organiz
# Share sites and files with guest users -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- To collaborate with people outside your organization, you can share entire sites or specific files externally. If you want to get straight to setting up sharing, choose the scenario you want to enable: - [Collaborate with guests on a document](../../solutions/collaborate-on-documents.md)
admin Update Phone Number And Email Address https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/update-phone-number-and-email-address.md
description: "Update your administrator phone number and email address in the ad
# Update your admin phone number and email address -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- This article explains how you, the admin, can change your business phone and email address in Microsoft 365. If you're looking for how to change your company's profile information, such as company name and address, company phone number, and technical contact information, see [Change your organization's address, technical contact email, and other information](change-address-contact-and-more.md).
admin Apply For A Fapiao https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/services-in-china/apply-for-a-fapiao.md
monikerRange: 'o365-21vianet'
# Apply for a Fapiao for Office 365 operated by 21Vianet
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- You can submit your Fapiao request to the 21Vianet Fapiao management system about three days after you have paid. After you submit your Fapiao request, it will be processed in two days. ![Flowchart showing the Fapiao application process.](../../media/bf14884a-53f9-4c53-971c-b9b8ad6ec8d3.png)
admin View Your Bill Or Get A Fapiao https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/services-in-china/view-your-bill-or-get-a-fapiao.md
monikerRange: 'o365-21vianet'
# View your bill or get a Fapiao in Office 365 operated by 21Vianet
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
- You can view your billing statement or invoice for information about your Office 365 operated by 21Vianet subscription charges. You can also obtain a Fapiao (your final proof of purchase). You can submit your Fapiao request to our [Fapiao management system](https://go.microsoft.com/fwlink/p/?linkid=837465) about three days after you have paid. ## Find your billing statement or request a Fapiao
admin Add Domain https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/setup/add-domain.md
description: "Add your domain to Microsoft 365 in the Microsoft 365 admin center
# Add a domain to Microsoft 365 -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- **[Check the Domains FAQ](domains-faq.yml)** if you don't find what you're looking for. *To Add, modify or remove domains you **must** be a **Global Administrator** of a [business or enterprise plan](https://products.office.com/business/office). These changes affect the whole tenant, *Customized administrators* or *regular users* won't be able to make these changes.*
admin Customize Reports https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/usage-analytics/customize-reports.md
description: "Learn to customize reports in the browser and Power BI Desktop."
# Customize the reports in Microsoft 365 usage analytics -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- Microsoft 365 usage analytics provides a dashboard in Power BI that offers insights into how users adopt and use Microsoft 365. The dashboard is just a starting point to interact with the usage data. The reports can be customized for more personalized insights. You can also use the Power BI desktop to further customize your reports by connecting them to other data sources to gain richer insights about your business.
admin Enable Usage Analytics https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/usage-analytics/enable-usage-analytics.md
description: "Learn how to start collecting data for your tenant by using the Mi
# Enable Microsoft 365 usage analytics -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- Microsoft 365 usage analytics is not yet available for Microsoft 365 US Government Community. ## Steps to enable Microsoft 365 usage analytics
admin Navigate And Utilize Reports https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/usage-analytics/navigate-and-utilize-reports.md
description: "Learn how to view the reports using navigation tabs and filters."
# Navigate and utilize the reports in Microsoft 365 usage analytics -
-> [!NOTE]
-> The admin center is changing. If your experience doesn't match the details presented here, see
-[About the new Microsoft 365 admin center](../microsoft-365-admin-center-preview.md?preserve-view=true&view=o365-21vianet).
-- The dashboard provides you with a quick overview of the main usage and adoption metrics. By selecting the top-level metrics, you can access reports that provide more details and insights. Each report tab contains data visualizations specific to an aspect of usage and adoption for your organization. The data collected is explained in the title of each report and a tile appears that contains further information about the visualizations on the report tab that you are viewing. To get started with your reports, here are some tips:
compliance Check Your Content Search Query For Errors https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/check-your-content-search-query-for-errors.md
search.appverid:
- MET150 ms.assetid: 88898874-e262-4c5c-b6d2-4e697497fc74
-description: "Learn how to detect errors and typos in your keyword query for content search, before running the search."
+description: "Learn how to detect errors and typos in your keyword query for Content search, before running the search."
# Check your Content Search query for errors-
-When you create or edit a Content Search, you can have Microsoft 365 check your query for unsupported characters and lowercase Boolean operators. How? Just click **Check query for typos** on the query page of a Content Search.
-
-![Click "Check query for typos" to check your search query for unsupported characters](../media/e5314306-cfb2-481d-9b5c-13ce658156e7.png)
Here's a list of the unsupported characters that we check for. Unsupported characters are often hidden, and they typically cause a search error or return unintended results. - **Smart quotation marks** - Smart single and double quotation marks (also called curly quotes) aren't supported. Only straight quotation marks can be used in a search query.
-
+ - **Non-printable and control characters** - Non-printable and control characters don't represent a written symbol, such as an alpha-numeric character. Examples of non-printable and control characters include characters that format text or separate lines of text.
-
+ - **Left-to-right and right-to-left marks** - These marks are control characters used to indicate text direction for left-to-right languages (such as English and Spanish) and right-to-left languages (such as Arabic and Hebrew).
-
+ - **Lowercase Boolean operators** - If you use a Boolean operator, such as **AND**, **OR**, and **NOT** in a search query, it must be uppercase. When we check a query for typos, the query syntax will often indicate that a Boolean operator is being used even though lowercase operators might be used; for example, `(WordA or WordB) and (WordC or WordD)`.
-
+ ## What happens if a query has an unsupported character?
-If unsupported characters are found in your query, a warning message is displayed that says unsupported characters were found and suggests an alternative. You then have the option keep the original query or replace it with the suggested revised query. Here's an example of the warning message that's displayed after you click **Check query for typos** for the search query in the previous screenshot. Notice that the original query contains smart quotes and lowercase Boolean operators.
+If unsupported characters are found in your query, a warning message is displayed that says unsupported characters were found and suggests an alternative. You then have the option keep the original query or replace it with the suggested revised query.
+
+Here's an example of the warning message that's displayed after you click **Check query for typos** for the search query in the previous screenshot. Note the original query used smart quotes and lowercase Boolean operators.
![A warning message is displayed with a suggested revision for your query](../media/23214b30-8e52-412c-bd80-63fb1b3ed52d.png)
compliance Content Search https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/content-search.md
To have access to the **Content search** page to run searches and preview and ex
![Specify keywords, conditions, and locations to search](../media/1e6de9dd-eac9-4e2a-819d-9740cf6c9106.png)
- - **Keywords to search for:** Type a search query in **Keywords** box. You can specify keywords, message properties such as sent and received dates, or document properties such as file names or the date that a document was last changed. You can use more complex queries that use a Boolean operator, such as **AND**, **OR**, **NOT**, and **NEAR**. You can also search for sensitive information (such as social security numbers) in documents, or search for documents that have been shared externally. If you leave the keyword box empty, all content located in the specified content locations is included in the search results.
+ 1. **Keywords to search for:** Type a search query in **Keywords** box. You can specify keywords, message properties such as sent and received dates, or document properties such as file names or the date that a document was last changed. You can use more complex queries that use a Boolean operator, such as **AND**, **OR**, **NOT**, and **NEAR**. You can also search for sensitive information (such as social security numbers) in documents, or search for documents that have been shared externally. If you leave the keyword box empty, all content located in the specified content locations is included in the search results.
Alternatively, you can click the **Show keyword list** checkbox and the type a keyword in each row. If you do this, the keywords on each row are connected by a logical operator (**c:s**) that is similar in functionality to the **OR** operator in the search query that's created. Why use the keyword list? You can get statistics that show how many items match each keyword. This can help you quickly identify which keywords are the most (and least) effective. You can also use a keyword phrase (surrounded by parentheses) in a row. For more information about search statistics, see [View keyword statistics for Content Search results](view-keyword-statistics-for-content-search.md).
- > [!NOTE]
- > To help reduce issues caused by large keyword lists, you're now limited to a maximum of 20 rows in the keyword list.
+ > [!NOTE]
+ > To help reduce issues caused by large keyword lists, you're now limited to a maximum of 20 rows in the keyword list.
- - **Conditions:** You can add search conditions to narrow a search and return a more refined set of results. Each condition adds a clause to the search query that is created and run when you start the search. A condition is logically connected to the keyword query (specified in the keyword box) by a logical operator (**c:c**) that is similar in functionality to the **AND** operator. That means that items have to satisfy both the keyword query and one or more conditions to be included in the results. This is how conditions help to narrow your results. For a list and description of conditions that you can use in a search query, see the "Search conditions" section in [Keyword queries and search conditions for Content Search](keyword-queries-and-search-conditions.md#search-conditions).
+ 2. **Conditions:** You can add search conditions to narrow a search and return a more refined set of results. Each condition adds a clause to the search query that is created and run when you start the search. A condition is logically connected to the keyword query (specified in the keyword box) by a logical operator (**c:c**) that is similar in functionality to the **AND** operator. That means that items have to satisfy both the keyword query and one or more conditions to be included in the results. This is how conditions help to narrow your results. For a list and description of conditions that you can use in a search query, see the "Search conditions" section in [Keyword queries and search conditions for Content Search](keyword-queries-and-search-conditions.md#search-conditions).
- - **Locations:** Choose the content locations to search.
+ 3. **Locations:** Choose the content locations to search.
- **All locations:** Use this option to search all content locations in your organization. This includes email in all Exchange mailboxes (including all inactive mailboxes, and mailboxes for all Microsoft Teams, Yammer Groups, and Microsoft 365 Groups), all Skype for Business conversations, all SharePoint and OneDrive for Business sites (including the sites for all Microsoft Teams, Yammer Groups, and Microsoft 365 Groups), and items in all Exchange public folders.
To have access to the **Content search** page to run searches and preview and ex
You can also add distribution groups to the list of Exchange mailboxes to search. For distribution groups, the mailboxes of group members are searched. Dynamic distribution groups aren't supported.
- > [!NOTE]
- > When you search all mailbox locations or just specific mailboxes, data from other Office 365 applications that's saved to user mailboxes is included when you export the results of a Content Search. This data won't be included in the estimated search results and isn't available for preview. It is included when you export and download the search results. For more information, see [Content stored in Exchange Online mailboxes](what-is-stored-in-exo-mailbox.md).
-
+ > [!NOTE]
+ > When you search all mailbox locations or just specific mailboxes, data from other Office 365 applications that's saved to user mailboxes is included when you export the results of a Content Search. This data won't be included in the estimated search results and isn't available for preview. It is included when you export and download the search results. For more information, see [Content stored in Exchange Online mailboxes](what-is-stored-in-exo-mailbox.md).
+
+ 4. **Add app content for on-premises users:** Select this checkbox to include Teams content for on-premises users in the search. For example if you search all Exchange mailboxes in the organization and also select this checkbox, cloud-based storage used to store Teams chat data for on-premises users will be included in the scope of the search. For more information, see [Search for Teams chat data for on-premises users](search-cloud-based-mailboxes-for-on-premises-users.md).
+ 5. After you've set up your search query, click **Save & run**. 6. On the **Save search** page, type a name for the search, and an optional description that helps identify the search. The name of the search has to be unique in your organization.
compliance Create Ediscovery Holds https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/create-ediscovery-holds.md
Summary information for meetings and calls in a Teams channel is also stored in
### Preserve content in private channels
-Starting in February 2020, we also turned on ability to preserve content in private channels. Because private channel chats are stored in the mailboxes of the chat participants, placing a user mailbox on eDiscovery hold will preserve private channel chats. Also, if a user mailbox was placed on an eDiscovery hold prior to February 2020, the hold will now automatically apply to private channel messages stored in that mailbox. Preserving files shared in private channels is also supported.
+Starting in February 2020, we also turned on the ability to preserve content in private channels. Because private channel chats are stored in the mailboxes of the chat participants, placing a user mailbox on eDiscovery hold will preserve private channel chats. Also, if a user mailbox was placed on an eDiscovery hold prior to February 2020, the hold will now automatically apply to private channel messages stored in that mailbox. Preserving files shared in private channels is also supported.
### Preserve wiki content
The following table lists the limits for eDiscovery cases and case holds.
> - [Get-ComplianceCase](/powershell/module/exchange/get-compliancecase) > - [Get-CaseHoldPolicy](/powershell/module/exchange/get-caseholdpolicy) > - [Get-ComplianceSearch](/powershell/module/exchange/get-compliancesearch)
- > - [Get-ComplianceSearchAction](/powershell/module/exchange/get-compliancesearchaction)
+ > - [Get-ComplianceSearchAction](/powershell/module/exchange/get-compliancesearchaction)
compliance Data Loss Prevention Policies https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/data-loss-prevention-policies.md
For example, you might have a DLP policy that helps you detect the presence of i
DLP policies are applied to sensitive items across Microsoft 365 locations and can be further scoped as detailed in this table.
-|location | include/exclude by|
+|Location | Include/exclude by|
||| |Exchange email| distribution groups| |SharePoint sites |sites |
Here's what a policy tip looks like in a OneDrive for Business account.
When a rule is matched, you can send an alert email to your compliance officer ( or any person(s) you choose) with details of the alert. This alert email will carry a link of the [DLP Alerts Management Dashboard](dlp-configure-view-alerts-policies.md) which the compliance officer can go to view the details of alert and events. The dashboard contains details of the event that triggered the alert along with details of the DLP policy matched and the sensitive content detected. In addition, you can also send an incident report with details of the event. This report includes information about the item that was matched, the actual content that matched the rule, and the name of the person who last modified the content. For email messages, the report also includes as an attachment the original message that matches a DLP policy.
-
-![Page for configuring incident reports](../media/Alerts-and-incident-report.png)
+
+> [!div class="mx-imgBorder"]
+> ![Page for configuring incident reports](../media/Alerts-and-incident-report.png)
DLP scans email differently from items in SharePoint Online or OneDrive for Business. In SharePoint Online and OneDrive for Business, DLP scans existing items as well as new ones and generates an alert and incident report whenever a match is found. In Exchange Online, DLP only scans new email messages and generates a report if there is a policy match. DLP ***does not*** scan or match previously existing email items that are stored in a mailbox or archive.
For example, the built-in **U.S. HIPAA** policy has a rule that uses an **AND**
## The priority by which rules are processed
-When you create rules in a policy, each rule is assigned a priority in the order in which it's created ΓÇö meaning, the rule created first has first priority, the rule created second has second priority, and so on.
-
-![Rules in priority order](../media/dlp-rules-in-priority-order.png)
+When you create rules in a policy, each rule is assigned a priority in the order in which it's created ΓÇö meaning, the rule created first has first priority, the rule created second has second priority, and so on.
+
+> [!div class="mx-imgBorder"]
+> ![Rules in priority order](../media/dlp-rules-in-priority-order.png)
After you have set up more than one DLP policy, you can change the priority of one or more policies. To do that, select a policy, choose **Edit policy**, and use the **Priority** list to specify its priority.
-![Set priority for a policy](../media/dlp-set-policy-priority.png)
+> [!div class="mx-imgBorder"]
+> ![Set priority for a policy](../media/dlp-set-policy-priority.png)
When content is evaluated against rules, the rules are processed in priority order. If content matches multiple rules, the rules are processed in priority order and the most restrictive action is enforced. For example, if content matches all of the following rules, Rule 3 is enforced because it's the highest priority, most restrictive rule:
To address these issues, you can tune your rules by adjusting the instance count
### Instance count Instance count means simply how many occurrences of a specific type of sensitive information must be present for content to match the rule. For example, content matches the rule shown below if between 1 and 9 unique U.S. or U.K. passport numbers are identified.
-
-Note that the instance count includes only **unique** matches for sensitive information types and keywords. For example, if an email contains 10 occurrences of the same credit card number, those 10 occurrences count as a single instance of a credit card number.
+
+> [!NOTE]
+> The instance count includes only **unique** matches for sensitive information types and keywords. For example, if an email contains 10 occurrences of the same credit card number, those 10 occurrences count as a single instance of a credit card number.
To use instance count to tune rules, the guidance is straightforward:
When you create a DLP policy, you'll choose between simple or advanced settings:
- **Advanced settings** use the rule editor to give you complete control over every setting for your DLP policy.
-Don't worry, under the covers, simple settings and advanced settings work exactly the same, by enforcing rules comprised of conditions and actions -- only with simple settings, you don't see the rule editor. It's a quick way to create a DLP policy.
+Don't worry, under the covers, simple settings and advanced settings work exactly the same, by enforcing rules comprised of conditions and actionsΓÇöonly with simple settings, you don't see the rule editor. It's a quick way to create a DLP policy.
### Simple settings
If you're creating DLP policies with a large potential impact, we recommend foll
You can also change the priority of multiple rules in a policy. To do that, open a policy for editing. In a row for a rule, choose the ellipses (**...**), and then choose an option, such as **Move down** or **Bring to last**.
- ![Set rule priority](../media/dlp-set-rule-priority.png)
+ > [!div class="mx-imgBorder"]
+ > ![Set rule priority](../media/dlp-set-rule-priority.png)
## DLP reports
compliance Dlp Microsoft Teams https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/dlp-microsoft-teams.md
In your organization, you can choose to allow users to override a DLP policy. An
Returning to our example, where a sender shared a social security number in a Teams channel, here's what the recipient saw:
-![Message blocked](../media/dlp-teams-blockedmessage-notification-to-user.png)
+> [!div class="mx-imgBorder"]
+> ![Message blocked](../media/dlp-teams-blockedmessage-notification-to-user.png)
The **What's this?** link opens an [article](data-loss-prevention-policies.md) about DLP policies, which helps explain why the message was blocked.
To perform this task, you must be assigned a role that has permissions to edit D
3. Select a policy, and next to **Policy settings**, choose **Edit**.
-4. Either create a new rule, or edit an existing rule for the policy.<br/>![Editing a rule for a policy](../media/dlp-teams-editrule.png)<br/>
+4. Either create a new rule, or edit an existing rule for the policy.
-5. On the **User notifications** tab, select **Customize the email text** and/or **Customize the policy tip text** options.<br/>![Customize user notifications and policy tips](../media/dlp-teams-editrule-usernotifications.png)<br/>
+ > [!div class="mx-imgBorder"]
+ > ![Editing a rule for a policy](../media/dlp-teams-editrule.png)
+
+5. On the **User notifications** tab, select **Customize the email text** and/or **Customize the policy tip text** options.
+
+ > [!div class="mx-imgBorder"]
+ > ![Customize user notifications and policy tips](../media/dlp-teams-editrule-usernotifications.png)<br/>
6. Specify the text you want to use for email notifications and/or policy tips, and then choose **Save**.
To perform this task, you must be assigned a role that has permissions to edit D
2. Choose **Data loss prevention** > **Policy**.
-3. Select a policy, and look at the values under **Locations**. If you see **Teams chat and channel messages**, you're all set. If you don't, click **Edit**.<br/>![Locations for existing policy](../media/dlp-teams-editexistingpolicy.png)<br/>
+3. Select a policy, and look at the values under **Locations**. If you see **Teams chat and channel messages**, you're all set. If you don't, click **Edit**.
+
+ > [!div class="mx-imgBorder"]
+ > ![Locations for existing policy](../media/dlp-teams-editexistingpolicy.png)
-4. In the **Status** column, turn the policy on for **Teams chat and channel messages**.<br/>![DLP for Teams chats and channels](../media/dlp-teams-addteamschatschannels.png)<br/>
+4. In the **Status** column, turn the policy on for **Teams chat and channel messages**.
+
+ > [!div class="mx-imgBorder"]
+ > ![DLP for Teams chats and channels](../media/dlp-teams-addteamschatschannels.png)
5. On the **Choose locations** tab, keep the default setting of all accounts, or select **Let me choose specific locations**. You can specify:+ 1. up to 1000 individual accounts to include or exclude 1. distribution lists and security groups to include or exclude. **This is a public preview feature.** <!-- 1. the shared mailbox of a shared channel. **This is a public preview feature.**--> 6. Then choose **Next**. --
-6. Click **Save**.
+7. Click **Save**.
Allow approximately one hour for your changes to work their way through your data center and sync to user accounts. <!-- again, why user accounts? -->
To perform this task, you must be assigned a role that has permissions to edit D
2. Choose **Data loss prevention** > **Policy** > **+ Create a policy**.
-3. Choose a [template](data-loss-prevention-policies.md#dlp-policy-templates), and then choose **Next**.<br/>In our example, we chose the U.S. Personally Identifiable Information Data template.<br/>![Privacy template for DLP policy](../media/dlp-teams-createnewpolicy-template.png)<br/>
+3. Choose a [template](data-loss-prevention-policies.md#dlp-policy-templates), and then choose **Next**.
+
+ In our example, we chose the U.S. Personally Identifiable Information Data template.
+
+ > [!div class="mx-imgBorder"]
+ > ![Privacy template for DLP policy](../media/dlp-teams-createnewpolicy-template.png)<br/>
4. On the **Name your policy** tab, specify a name and description for the policy, and then choose **Next**. 5. On the **Choose locations** tab, keep the default setting of all accounts, or select **Let me choose specific locations**. You can specify:+ 1. up to 1000 individual accounts to include or exclude 1. distribution lists and security groups to include or exclude. **This is a public preview feature.** <!-- 1. the shared mailbox of a shared channel. **This is a public preview feature.**-->
-![DLP policy locations](../media/dlp-teams-selectlocationsnewpolicy.png)
-
-> [!NOTE]
-> If you want to make sure documents that contain sensitive information are not shared inappropriately in Teams, make sure **SharePoint sites** and **OneDrive accounts** are turned on, along with **Teams chat and channel messages**.
+ ![DLP policy locations](../media/dlp-teams-selectlocationsnewpolicy.png)
+ > [!NOTE]
+ > If you want to make sure documents that contain sensitive information are not shared inappropriately in Teams, make sure **SharePoint sites** and **OneDrive accounts** are turned on, along with **Teams chat and channel messages**.
6. On the **Policy settings** tab, under **Customize the type of content you want to protect**, keep the default simple settings, or choose **Use advanced settings**, and then choose **Next**. If you choose advanced settings, you can create or edit rules for your policy. (To get help with this, see [Simple settings vs. advanced settings](data-loss-prevention-policies.md#simple-settings-vs-advanced-settings).)
-7. On the **Policy settings** tab, under **What do you want to do if we detect sensitive info?**, review the settings. (Here's where you can choose to keep default [policy tips and email notifications](use-notifications-and-policy-tips.md), or customize them.)<br/>![DLP policy settings with tips and notifications](../media/dlp-teams-policysettings-tipsemails.png)<br/>When you're finished reviewing or editing settings, choose **Next**.
+7. On the **Policy settings** tab, under **What do you want to do if we detect sensitive info?**, review the settings. (Here's where you can choose to keep default [policy tips and email notifications](use-notifications-and-policy-tips.md), or customize them.)
+
+ > [!div class="mx-imgBorder"]
+ > ![DLP policy settings with tips and notifications](../media/dlp-teams-policysettings-tipsemails.png)
+
+ When you're finished reviewing or editing settings, choose **Next**.
+
+8. On the **Policy settings** tab, under **Do you want to turn on the policy or test things out first?**, choose whether to turn the policy on, [test it first](data-loss-prevention-policies.md#roll-out-dlp-policies-gradually-with-test-mode), or keep it turned off for now, and then choose **Next**.
-8. On the **Policy settings** tab, under **Do you want to turn on the policy or test things out first?**, choose whether to turn the policy on, [test it first](data-loss-prevention-policies.md#roll-out-dlp-policies-gradually-with-test-mode), or keep it turned off for now, and then choose **Next**.<br/>![Specify whether to turn the policy on](../media/dlp-teams-policysettings-turnonnow.png)<br/>
+ > [!div class="mx-imgBorder"]
+ > ![Specify whether to turn the policy on](../media/dlp-teams-policysettings-turnonnow.png)
9. On the **Review your settings** tab, review the settings for your new policy. Choose **Edit** to make changes. When you're finished, choose **Create**.
Allow approximately one hour for your new policy to work its way through your da
To ensure that SharePoint documents that contain sensitive information cannot be accessed by external guests either from SharePoint or Teams by default, select the following: -- You can ensure that documents are protected until DLP scans and marks them as safe to share by [marking new files as sensitive by default](/sharepoint/sensitive-by-default)
+- You can ensure that documents are protected until DLP scans and marks them as safe to share by [marking new files as sensitive by default](/sharepoint/sensitive-by-default).
+ - Recommended DLP policy structure+ - **Conditions** - Content contains any of these sensitive information types: [Select all that applies]
+
- Content is shared from Microsoft 365 with people outside my organization
- <br/>![DLP conditions to detect external sharing of sensitive content](../media/dlp-teams-external-sharing/external-condition.png)<br/>
-
+
+ > [!div class="mx-imgBorder"]
+ > ![DLP conditions to detect external sharing of sensitive content](../media/dlp-teams-external-sharing/external-condition.png)
- **Actions** - Restrict access to the content for external users
+
- Notify users with email and policy tips
- - Send incident reports to the Administrator
- <br/>![DLP action to block external sharing of sensitive content](../media/dlp-teams-external-sharing/external-action.png)<br/>
+
+ - Send incident reports to the Administrator
+
+ > [!div class="mx-imgBorder"]
+ > ![DLP action to block external sharing of sensitive content](../media/dlp-teams-external-sharing/external-action.png)
DLP policy in action when attempting to share a document in SharePoint that contains sensitive information with an external guest:
-<br/>![External sharing blocked](../media/dlp-teams-external-sharing/external-sharing-blocked.png)<br/>
+
+> [!div class="mx-imgBorder"]
+> ![External sharing blocked](../media/dlp-teams-external-sharing/external-sharing-blocked.png)
DLP policy in action when guest attempts to open a document in Teams with block external:
-<br/>![External access blocked](../media/dlp-teams-external-sharing/external-access-blocked.png)<br/>
+
+> [!div class="mx-imgBorder"]
+> ![External access blocked](../media/dlp-teams-external-sharing/external-access-blocked.png)
## Related articles
compliance Endpoint Dlp Learn About https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/endpoint-dlp-learn-about.md
You can use Microsoft 365 data loss prevention (DLP) to monitor the actions that
Microsoft Endpoint DLP enables you to audit and manage the following types of activities users take on sensitive items on devices running Windows 10.
-|activity |description | auditable/restictable|
+|Activity |Description | Auditable/restictable|
|||| |upload to cloud service, or access by unallowed browsers | Detects when a user attempts to upload an item to a restricted service domain or access an item through a browser. If they are using a browser that is listed in DLP as an being an unallowed browser, the upload activity will be blocked and the user is redirected to use Edge Chromium. Edge Chromium will then either allow or block the upload or access based on the DLP policy configuration |auditable and restrictable| |copy to other app |Detects when a user attempts to copy information from a protected item and then paste it into another app, process or item. Copying and pasting information within the same app, process, or item is not detected by this activity. | auditable and restrictable|
If you have onboarded devices through [Microsoft Defender for Endpoint](/windows
### Viewing Endpoint DLP data -- You can view alerts related to DLP policies enforced on endpoint devices by going to the [DLP Alerts Management Dashboard](dlp-configure-view-alerts-policies.md).
-![Alert info](../media/Alert-info-1.png)
+> [!div class="mx-imgBorder"]
+> ![Alert info](../media/Alert-info-1.png)
You can also view details of the associated event with rich metadata in the same dashboard
-![event info](../media/Event-info-1.png)
+> [!div class="mx-imgBorder"]
+> ![event info](../media/Event-info-1.png)
Once a device is onboarded, information about audited activities flows into Activity explorer even before you configure and deploy any DLP policies that have devices as a location.
compliance Insider Risk Management Alerts https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/insider-risk-management-alerts.md
Insider risk management alerts are automatically generated by risk indicators defined in insider risk management policies. These alerts give compliance analysts and investigators an all-up view of the current risk status and allow your organization to triage and take actions for discovered risks. By default, policies generate a certain amount of low, medium, and high severity alerts, but you can [increase or decrease the alert volume](insider-risk-management-settings.md#alert-volume) to suit your needs. Additionally, you can configure the [alert threshold for policy indicators](insider-risk-management-settings.md#indicator-level-settings-preview) when creating a new policy with the policy wizard.
+Check out the [Insider Risk Management Alerts Triage Experience video](https://www.youtube.com/watch?v=KgmpxBLJLPI) for an overview of how alerts provide details, context, and related content for risky activity and how to make your investigation process more effective.
+ ## Alert dashboard The insider risk **Alert dashboard** allows you to view and act on alerts generated by insider risk policies. Each report widget displays information for last 30 days.
compliance Insider Risk Management Cases https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/insider-risk-management-cases.md
After investigating the details of a case, you can take action by:
- sharing the case with your ServiceNow instance or with an email recipient - escalating the case for an Advanced eDiscovery investigation
+Check out the [Insider Risk Management Investigation and Escalation video](https://www.youtube.com/watch?v=UONUSmkRC8s) for an overview of how cases are investigated and managed in insider risk management.
+ ## Cases dashboard The insider risk management **Cases dashboard** allows you to view and act on cases. Each report widget on the dashboard displays information for last 30 days.
compliance Insider Risk Management Configure https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/insider-risk-management-configure.md
For step-by-step instructions to turn on auditing, see [Turn audit log search on
## Step 3: Enable and view insider risk analytics insights (optional)
-Insider risk management analytics enables you to conduct an evaluation of potential insider risks in your organization without configuring any insider risk policies. This evaluation can help your organization identify potential areas of higher user risk and help determine the type and scope of insider risk management policies you may consider configuring. This evaluation may also help you determine needs for additional licensing or future optimization of existing policies. Analytics scan results may take up to 48 hours before insights are available as reports for review. To learn more about analytics insights, see [Insider risk management settings: Analytics (preview)](insider-risk-management-settings.md#analytics-preview).
+Insider risk management analytics enables you to conduct an evaluation of potential insider risks in your organization without configuring any insider risk policies. This evaluation can help your organization identify potential areas of higher user risk and help determine the type and scope of insider risk management policies you may consider configuring. This evaluation may also help you determine needs for additional licensing or future optimization of existing policies. Analytics scan results may take up to 48 hours before insights are available as reports for review. To learn more about analytics insights, see [Insider risk management settings: Analytics (preview)](insider-risk-management-settings.md#analytics-preview) and check out the [Insider Risk Management Analytics video](https://www.youtube.com/watch?v=5c0P5MCXNXk) to help understand how analytics can help accelerate the identification of potential insider risks and help you to quickly take action.
To enable insider risk Analytics, you must be a member of the *Insider Risk Management*, *Insider Risk Management Admin*, or Microsoft 365 *Global admin* role group.
compliance Insider Risk Management Policies https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/insider-risk-management-policies.md
Insider risk management policies determine which users are in-scope and which types of risk indicators are configured for alerts. You can quickly create a policy that applies to all users in your organization or define individual users or groups for management in a policy. Policies support content priorities to focus policy conditions on multiple or specific Microsoft Teams, SharePoint sites, data sensitivity types, and data labels. Using templates, you can select specific risk indicators and customize event thresholds for policy indicators, effectively customizing risk scores, and level and frequency of alerts. Additionally, risk score boosters and anomaly detections help identify user activity that is of higher importance or more unusual. Policy windows allow you to define the time frame to apply the policy to alert activities and are used to determine the duration of the policy once activated.
+Check out the [Insider Risk Management Policies Configuration video](https://www.youtube.com/watch?v=kudK5ajZTUo) for an overview of how policies created with built-in policy templates can help you to quickly take action on potential risks.
+ ## Policy dashboard The **Policy dashboard** allows you to quickly see the policies in your organization, the health of the policy, manually add users to policies, and the view the status of alerts associated with each policy.
compliance Insider Risk Management Settings https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/insider-risk-management-settings.md
Insider risk analytics enables you to conduct an evaluation of potential insider
- Minimal privacy requirements: Scan results and insights are returned as anonymized user activity, individual user names are not identifiable by reviewers. - Understand potential risks through consolidated insights: Scan results can help you quickly identify potential risk areas for your users and which policy would be best to help mitigate these risks.
+Check out the [Insider Risk Management Analytics video](https://www.youtube.com/watch?v=5c0P5MCXNXk) to help understand how analytics can help accelerate the identification of potential insider risks and help you to quickly take action.
+ Analytics scans for risk activity events from several sources to help identify insights into potential areas of risk. Depending on your current configuration, analytics looks for qualifying risk activities in the following areas: -- Microsoft 365 audit logs: Included in all scans, this is the primary source for identifying most of the potentially risky activities.-- Exchange Online: Included in all scans, Exchange Online activity helps identify activities where data in attachments are emailed to external contacts or services.-- Azure Active Directory: Included in all scans, Azure Active Directory history helps identify risky activities associated with users with deleted user accounts.-- Microsoft 365 HR data connector: If configured, HR connector events help identify risky activities associated with users that have resignation or upcoming termination dates.
+- **Microsoft 365 audit logs**: Included in all scans, this is the primary source for identifying most of the potentially risky activities.
+- **Exchange Online**: Included in all scans, Exchange Online activity helps identify activities where data in attachments are emailed to external contacts or services.
+- **Azure Active Directory**: Included in all scans, Azure Active Directory history helps identify risky activities associated with users with deleted user accounts.
+- **Microsoft 365 HR data connector**: If configured, HR connector events help identify risky activities associated with users that have resignation or upcoming termination dates.
Analytics insights from scans are based on the same risk activity signals used by insider risk management policies and report results based on both single and sequence user activities. However, the risk scoring for analytics is based on up to 30 days of activity while insider risk policies use daily activity for insights. When you first enable and run analytics in your organization, you'll see the scan results for one day. If you leave analytics enabled, you'll see the results of each daily scan added to the insight reports for a maximum range of the previous 30 days of activity.
compliance Limits Ediscovery20 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/limits-ediscovery20.md
The following table lists the limits for cases and review sets in Advanced eDisc
|Total number of documents that can be added to a case (for all review sets in a case). <br/> |3 million <br/> | |Total file size per load set. This includes loading non-Office 365 into a review set. <br/> |300 GB <br/> | |Total amount of data loaded into all review sets in the organization per day.<br/> |2 TB <br/> |
-|Maximum number of loads sets per case. <br/> |200 <br/> |
+|Maximum number of load sets per case. <br/> |200 <br/> |
|Maximum number of review sets per case. <br/> |20 <br/> | |Maximum number of tag groups per case. <br/> |1000 <br/> | |Maximum number of tags per case. <br/> |1000 <br/> |
+|Maximum concurrent jobs in your organization to add content to a review set. These jobs are named **Adding data to a review set** and are displayed on the **Jobs** tab in a case.| 10 <sup>4</sup> |
+|Maximum concurrent jobs to add content to a review set per user. These jobs are named **Adding data to a review set** and are displayed on the **Jobs** tab in a case. | 3 |
||| ## Hold limits
Microsoft collects performance information for searches run by all organizations
|Maximum size of Excel file that can be viewed in the native viewer. <br/> |4 MB <br/> | |||
-## Export limits
+## Export limits - Final export out of Review Set
+
+The limits described in this section are related to exporting documents out of a review set.
| Description of limit | Limit | |:--|:--| |Maximum size of a single export.|3 million documents or 100 GB, whichever is smaller|
-|Maximum amount of data in a single day. | 2 TB |
-|Maximum concurrent exports in your organization. | 10 <sup>4</sup> |
-|Maximum concurrent exports per user. | 3 |
-|Maximum size of a single PST file. | 10 GB |
|Maximum concurrent exports per review set. | 1 | |||
Microsoft collects performance information for searches run by all organizations
> > <sup>3</sup> For non-phrase queries (a keyword value that doesn't use double quotation marks) we use a special prefix index. This tells us that a word occurs in a document, but not where it occurs in the document. To do a phrase query (a keyword value with double quotation marks), we need to compare the position within the document for the words in the phrase. This means that we can't use the prefix index for phrase queries. In this case, we internally expand the query with all possible words that the prefix expands to; for example, **time\*** can expand to **"time OR timer OR times OR timex OR timeboxed OR …"**. The limit of 10,000 is the maximum number of variants the word can expand to, not the number of documents matching the query. There is no upper limit for non-phrase terms. >
-> <sup>4</sup> This limit is shared across all eDiscovery tools. This means that concurrent exports in Content search, Core eDiscovery, and Advanced eDiscovery are applied against this limit.
+> <sup>4</sup> This limit is shared with exporting content in other eDiscovery tools. This means that concurrent exports in Content search and Core eDiscovery (and adding content to review sets in Advanced eDiscovery) are all applied against this limit.
> > <sup>5</sup> This limit applies to downloading selected documents from a review set. It doesn't apply to exporting documents from a review set. For more information about downloading and exporting documents, see [Export case data in Advanced eDiscovery](exporting-data-ediscover20.md). >
compliance Managing Jobs Ediscovery20 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/managing-jobs-ediscovery20.md
Here's a list of the jobs (which are typically long-running processes) that are
| Job type | Description | | :-- | :- |
-|Adding data to a review set | A user adds the results of a search to a review set. This job consists of two sub jobs: </br>ΓÇó **GatheringItems** - A list of items that match the search query (and the Microsoft 365 data source that they're located in) is generated. </br>ΓÇó **Ingestion & Indexing** - The items that match the search query are copied to an Azure Storage location (in a process called *ingestion*) and then those items in the Azure Storage location are reindexed. This new index is used when querying and analyzing items in the data set. </br></br>For more information, see [Add search results to a review set](add-data-to-review-set.md). |
+|Adding data to a review set | A user adds a collection to a review set. This job consists of two sub jobs: </br>ΓÇó **Export** - A list of items in the collection is generated. </br>ΓÇó **Ingestion & Indexing** - The items in the collection that match the search query are copied to an Azure Storage location (in a process called *ingestion*) and then those items in the Azure Storage location are reindexed. This new index is used when querying and analyzing items in the data set. </br></br>For more information, see [Add search results to a review set](add-data-to-review-set.md). |
|Adding data to another review set | A user adds documents from one review set to a different review set in the same case. For more information, see [Add data to a review set from another review set](add-data-to-review-set-from-another-review-set.md).| |Adding non-Microsoft 365 data to a review set | A user uploads non-Microsoft 365 data to a review set. The data is also indexed during this process. For example, files from an on-premises file server or a client computer are uploaded to a review set. For more information, see [Load non-Microsoft 365 data into a review set](load-non-office-365-data-into-a-review-set.md).| |Adding remediated data to a review set | Data with processing errors is remediated and loaded back into a review set. For more information, see:</br>ΓÇó [Error remediation when processing data](error-remediation-when-processing-data-in-advanced-ediscovery.md)</br>ΓÇó [Single item error remediation](single-item-error-remediation.md)| |Comparing load sets | A user looks at the differences between different load sets in a review set. A load set is an instance of adding data to a review set. For example, if you add the results of two different searches to the same review set, each would represent a load set. | |Conversation reconstruction|When a user adds the results of a search to a conversation review set, instant message conversations (also called *threaded conversations*) in services like Microsoft Teams are reconstructed in a PDF file. This job is also triggered when a user clicks **Action > Create conversation PDFs** in a review set. For more information, see [Review conversations in Advanced eDiscovery](conversation-review-sets.md). |Converting redacted documents to PDF|After a user annotates a document in a review set and redacts a portion of it, they can choose to convert the redacted document to a PDF file. This ensures that the redacted portion will not be visible if the document is exported for presentation. For more information, see [View documents in a review set](annotating-and-redacting-documents.md). |
-|Estimating search results | After a user creates and runs a new search (or reruns an existing search) the search tool searches the index for items that match the search query and prepares an estimate that includes the number and total size of all items by the search, and the number of data sources searched. For more information, see [Collect data for a case](collecting-data-for-ediscovery.md). |
+|Estimating search results | After a user creates and runs or reruns a draft collection, the search tool searches the index for items that match the search query and prepares an estimate that includes the number and total size of all items by the search, and the number of data sources searched. For more information, see [Collect data for a case](collecting-data-for-ediscovery.md). |
|Preparing data for export | A user exports documents from a review set. When the export process is complete, they can download the exported data to a local computer. For more information, see [Export case data](exporting-data-ediscover20.md). | |Preparing for error resolution |When a user selects a file and creates a new error remediation in the Error view on the **Processing** tab of a case, the first step in the process is to upload the file that has the processing error to an Azure Storage location in the Microsoft cloud. This job tracks the progress of the upload process. For more information about the error remediation workflow, see [Error remediation when processing data](error-remediation-when-processing-data-in-advanced-ediscovery.md). |
-|Preparing search preview | After a user creates and runs a new search (or reruns an existing search), the search tool prepares a sample subset of items (that match the search query) that can be previewed. Previewing search results help you determine the effectiveness of the search. For more information, see [Collect data for a case](collecting-data-for-ediscovery.md#view-search-results-and-statistics). |
+|Preparing search preview | After a user creates and runs a new draft collection (or reruns an existing draft collection), the search tool prepares a sample subset of items (that match the search query) that can be previewed. Previewing search results help you determine the effectiveness of the search. For more information, see [Collect data for a case](collecting-data-for-ediscovery.md#view-search-results-and-statistics). |
|Re-indexing custodian data | When you add a custodian to a case, all partially indexed items in the custodian's selected data sources are reindexed by a process called *Advanced indexing*. This job is also triggered when you click **Update index** on the **Processing** tab of a case, and when you update the index for a specific custodian on the custodian properties flyout page. For more information, see [Advanced indexing of custodian data](indexing-custodian-data.md). |Running analytics | A user analyzes data in a review set by running Advanced eDiscovery analytics tools such as near duplicate detection, email threading analysis, and themes analysis. For more information, see [Analyze data in a review set](analyzing-data-in-review-set.md). | |Tagging documents | This job is triggered when a user clicks **Start tagging job** in the **Tagging panel** when reviewing documents in a review set. A user can start this job after tagging documents in a review set and then bulk-selecting them in the view document panel. For more information, see [Tag documents in a review set](tagging-documents.md). |
compliance Record Versioning https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/record-versioning.md
You can now do the following things:
- **Maintain an evergreen document that contains all versions.** By default, each SharePoint and OneDrive document has a version history available on the item menu. In this version history, you can easily see which versions are records and view those documents.
-> [!NOTE]
-> When you use record versioning with a retention label that has a delete action, we recommend that you also configure the retention setting **Start the retention period based on:** to be **When items were labeled**. With this label setting, the start of the retention period is reset for each new record version, which ensures that older versions will be deleted before newer versions.
+> [!TIP]
+> When you use record versioning with a retention label that has a delete action, consider configuring the retention setting **Start the retention period based on:** to be **When items were labeled**. With this label setting, the start of the retention period is reset for each new record version, which ensures that older versions will be deleted before newer versions.
Record versioning is automatically available for any document that has a retention label that marks the item as a record. When a user views the document properties by using the details pane, they can toggle the **Record status** from **Locked** to **Unlocked**. This action creates a record in the Records folder in the Preservation Hold library, where it resides for the remainder of its retention period.
compliance Retention https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/retention.md
description: Learn about retention policies and retention labels that help you t
> The information on this page is for IT administrators who can create retention policies and retention labels for compliance reasons. For most organizations, the volume and complexity of their data is increasing dailyΓÇöemail, documents, instant messages, and more. Effectively managing or governing this information is important because you need to:
-
-- **Comply proactively with industry regulations and internal policies** that require you to retain content for a minimum period of timeΓÇöfor example, the Sarbanes-Oxley Act might require you to retain certain types of content for seven years. -- **Reduce your risk in the event of litigation or a security breach** by permanently deleting old content that you're no longer required to keep.
-
-- **Help your organization to share knowledge effectively and be more agile** by ensuring that your users work only with content that's current and relevant to them.
-
-Retention settings that you configure can help you achieve all these goals. Managing content commonly requires two actions:
-
-- **Retaining** content so that it can't be permanently deleted before the end of the retention period.
-
-- **Deleting** content permanently at the end of the retention period.
-
+- **Comply proactively with industry regulations and internal policies** that require you to retain content for a minimum period of timeΓÇöfor example, the Sarbanes-Oxley Act might require you to retain certain types of content for seven years.
+
+- **Reduce your risk in the event of litigation or a security breach** by permanently deleting old content that you're no longer required to keep.
+
+- **Help your organization to share knowledge effectively and be more agile** by ensuring that your users work only with content that's current and relevant to them.
+
+Retention settings that you configure can help you achieve these goals. Managing content commonly requires two actions:
+
+| Action| Purpose |
+|:--|:--|
+|Retain content | Prevent permanent deletion and remain available for eDiscovery |
+|Delete content | Permanently delete content from your organization|
With these two retention actions, you can configure retention settings for the following outcomes: - Retain-only: Retain content forever or for a specified period of time.-- Delete-only: Delete content after a specified period of time.-- Retain and then delete: Retain content for a specified period of time and then delete it.
+- Delete-only: Permanently delete content after a specified period of time.
+- Retain and then delete: Retain content for a specified period of time and then permanently delete it.
These retention settings work with content in place that saves you the additional overheads of creating and configuring additional storage when you need to retain content for compliance reasons. In addition, you don't need to implement customized processes to copy and synchronize this data.
+Use the following sections to learn more about how retention policies and retention labels work, when to use them, and how they supplement each other. But if you're ready to get started and deploy retention settings for some common scenarios, see [Get started with retention policies and retention labels](get-started-with-retention.md).
+ ## How retention settings work with content in place When content has retention settings assigned to it, that content remains in its original location. People can continue to work with their documents or mail as if nothing's changed. But if they edit or delete content that's included in the retention policy, a copy of the content is automatically retained.
compliance Search Cloud Based Mailboxes For On Premises Users https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/search-cloud-based-mailboxes-for-on-premises-users.md
search.appverid:
- MST160 - MET150 ms.assetid: 3f7dde1a-a8ea-4366-86da-8ee6777f357c
-description: Use the Content Search tool in the Security & Compliance Center to search for and export Teams chat data for on-premises users in an Exchange hybrid deployment.
+description: Use eDiscovery tools in Microsoft 365 to search for and export Teams chat data for on-premises users in an Exchange hybrid deployment.
Here are the requirements and limitations for enabling cloud-based storage for o
- If your organization doesn't have an Exchange hybrid deployment, you must synchronize your on-premises Exchange schema to Azure Active Directory. If you don't do this, you might risk creating duplicate cloud-based mailboxes in Exchange Online for users that have a mailbox in your on-premises Exchange organization. -- Only Teams chat data associated with an on-premises user is stored in the cloud-based storage area. An on-premises user can't access this storage area in any way.
+- Only the Teams chat data associated with an on-premises user is stored in the cloud-based storage area. An on-premises user can't access this storage area in any way.
> [!NOTE] > Teams channel conversations are always stored in the cloud-based mailbox that's associated with the Team, which means you can search for channel conversations. For more information about searching Teams channel conversations, see [Searching Microsoft Teams and Microsoft 365 Groups](content-search.md#searching-microsoft-teams-and-microsoft-365-groups). ## How it works
-If a Microsoft Teams-enabled user has an on-premises mailbox and their user account/identity has been synched to the cloud, Microsoft creates cloud-based storage to associate the on-premises user's 1xN Teams chat data with. Teams chat data for on-premises users is indexed for search. This lets you Use Content Search (and searches associated with Core and Advanced eDiscovery cases) to search, preview, and export Teams chat data for on-premises users. You can also use **\*ComplianceSearch** cmdlets in the Security & Compliance Center PowerShell to search for Teams chat data for on-premises users.
+If a Microsoft Teams-enabled user has an on-premises mailbox and their user account/identity has been synched to the cloud, Microsoft creates cloud-based storage to associate the on-premises user's 1xN Teams chat data with. Teams chat data for on-premises users is indexed for search. This lets you Use Content search (and searches associated with Core eDiscovery and Advanced eDiscovery cases) to search, preview, and export Teams chat data for on-premises users. You can also use **\*ComplianceSearch** cmdlets in the Security & Compliance Center PowerShell to search for Teams chat data for on-premises users.
The following graphic shows the workflow of how Teams chat data for on-premises users is available to search, preview, and export. ![Cloud-based storage for on-premises users in Microsoft Teams](../media/EHAMShard1.png)
-In addition to this new capability, you can still use Content Search to search, preview, and export Teams content in the cloud-based SharePoint site and Exchange mailbox associated with each Microsoft Team and 1xN Teams chat data in the Exchange Online mailbox for cloud-based users.
+In addition to this capability, you can also use eDiscovery tools to search, preview, and export Teams content in the cloud-based SharePoint site and Exchange mailbox associated with each Microsoft Team and 1xN Teams chat data in the Exchange Online mailbox for cloud-based users.
+### How this feature is supported in Content search and Core eDiscovery search tools
-### What happens after this feature is enabled?
-
-After this feature is deployed in your organization, the following changes are made in Content Search and in searches associated with an eDiscovery case in the Security & Compliance Center:
+The following UI elements in Content search and in the search tool associated with Core eDiscovery cases in the Microsoft 365 compliance center:
-- The **Add Office app content for on-premises users** checkbox is added under the **Locations** in Content Search.
+- The **Add Office app content for on-premises users** is displayed under the **Locations** in Content search. Select this checkbox to include the cloud-based storage for on-premises users in a content search.
![The "Add Office app content for on-premises users" checkbox is added to the Content Search UI](../media/599e751e-17bd-408d-a18c-127538de6e85.png)
After this feature is deployed in your organization, the following changes are m
## Searching for Teams chat content for on-premises users
-After the feature has been enabled, you can use Content Search in the Security & Compliance Center to search for Teams chat data for on-premises users.
+Here's how to use Content search in the Microsoft 365 compliance center to search for Teams chat data for on-premises users.
-1. In the Security & Compliance Center, go to **Search** \> **Content search**
+1. In the Microsoft 365 compliance center, go to **Content search**.
-2. On the **Search** page, click ![Add icon](../media/8ee52980-254b-440b-99a2-18d068de62d3.gif) **New search**.
+2. On the **Searches** tab, click ![Add icon](../media/8ee52980-254b-440b-99a2-18d068de62d3.gif) **New search**.
As previously explained, the **Add Office app content for on-premises users** checkbox is displayed under **Locations**. It's selected by default. 3. Create the keyword query and add conditions to the search query if necessary. To only search for Team chats data, you can add the following query in the **Keywords** box: ```text
- kind:im
+ kind:im AND kind:microsoftteams
``` 4. At this point, you can choose one of the following options under **Locations**:
For more information using these cmdlets, see:
## Frequently asked questions
-**Where is the cloud-based storage for on-premises users located?**
+**Do I have to submit a support request to search for chat messages for on-premises users?**
+
+No. This feature is enabled by default for all organizations. At one point, you did have to contact Microsoft Support but that is no longer the case.
-Teams chat data is stored in the Preferred Data Location (PDL) for an on-premises user. The PDL is honored in both Single-Geo and Multi-Geo environments. For more information, see [Microsoft 365 Multi-Geo](../enterprise/microsoft-365-multi-geo.md).
+ **Can eDiscovery tools find older Teams chat data for on-premises users before the time that this feature was enabled by default for all organizations?**
- **Are there any other requirements other than submitting a support request?**
+Microsoft started storing the Teams chat data for on-premises users on January 31, 2018. So, if the identity of an on-premises Teams user has been synched between you on-premises Active Directory and Azure Active Directory in Microsoft 365 since this date, then their Teams chat data is stored in the cloud and is searchable using eDiscovery tools.
+
+ **Do on-premises users need a license to store their Teams chat data in the cloud?**
-As previously explained, the identities of users with on-prem mailboxes must be synchronized to your cloud-based organization so that a corresponding mail user account is created for each on-premises user account in Office 365. Your organization must also have an Office 365 enterprise subscription, such as an Office 365 Enterprise E1, E3, or E5 subscription.
+Yes. To store Teams chat data for an on-premises user in a cloud-based storage, the user must be assigned a Microsoft Teams license and an Exchange Online Plan license in Office 365 (or Microsoft 365).
+
+**Where is the cloud-based storage for on-premises users located?**
- **Is there a risk of losing the Teams chat data if the user's on-premises mailbox is migrated to the cloud?**
+Teams chat data is stored in the Preferred Data Location (PDL) for an on-premises user. The PDL is honored in both Single-Geo and Multi-Geo environments. For more information, see [Microsoft 365 Multi-Geo](../enterprise/microsoft-365-multi-geo.md).
+
+**Is there a risk of losing the Teams chat data if the user's on-premises mailbox is migrated to the cloud?**
No. When you migrate the primary mailbox of an on-premises user to the cloud, the Teams chat data for that user will be migrated to their new cloud-based primary mailbox. **Can I apply an eDiscovery hold or retention policies to on-premises users?**
-Yes. You can apply eDiscovery holds or retention policies for Teams chats and channel messages of on-premises users.
-
- **Can Content Search find older Teams chat data for on-premises users before the time my organization submitted the request to enable this feature?**
-
-Microsoft started storing the Teams chat data for on-premises users on January 31, 2018. So, if the identity of an on-premises Teams user has been synched between Active Directory and Azure Active Directory since this date, then their Teams chat data is stored in the cloud and is searchable using Content Search. Microsoft is also working on storing Teams chat data from prior to January 31, 2018 in the cloud-based storage for on-premises users. More information about this will be available soon.
-
- **Do on-premises users need a license to store their Teams chat data in the cloud?**
-
-Yes. To store Teams chat data for an on-premises user in a cloud-based storage, the user must be assigned a Microsoft Teams license and an Exchange Online Plan license in Office 365 (or Microsoft 365).
+Yes. You can apply eDiscovery holds or retention policies for Teams chats and channel messages of on-premises users. However, to preserve or retain Teams content for on-premises users, an on-premises user must be assigned an Exchange Online Plan 2 license.
compliance Unlimited Archiving https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/unlimited-archiving.md
Here are some things to consider when using Outlook or Outlook on the web to acc
- You can access any folder in your archive mailbox, including ones that were moved to the auto-expanded storage area. -- Search for auto-expanded archiving is available in Outlook for the web. Similar to Online Archive, you can search for items that were moved to an additional storage area only by searching the current folder itself. This means that you must select the archive folder in the folder list, and then select a single folder as your search scope. Similarly, if a folder in an auto-expanded storage area contains subfolders, you must search each subfolder separately.
+- Search for auto-expanded archiving is available in Outlook for the web (OWA). Similar to Online Archive, you can search for items that were moved to an additional storage area. When archive is selected as the search scope in OWA, all archives (including auto-expanded archives) and their corresponding subfolders will be searched.
+ - Auto-expanded archive search is available in Outlook Desktop in Current Channel (Preview). Within this preview, the Current Mailbox scope is available, thus allowing you to search the auto-expanded archive. For more information about this and other Microsoft Search support features, see [How Outlook for Windows connected to Exchange Online utilizes Microsoft Search](https://techcommunity.microsoft.com/t5/outlook-global-customer-service/how-outlook-for-windows-connected-to-exchange-online-utilizes/ba-p/1715045). - Item counts in Outlook and Read/Unread counts (in Outlook and Outlook on the web) in an auto-expanded archive might not be accurate.
compliance View Documents In Review Set https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/view-documents-in-review-set.md
Advanced eDiscovery displays content via several viewers each with different pur
- Native view - Text view - Annotate view-- Converted view ## File metadata
contentunderstanding Duplicate A Model https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/contentunderstanding/duplicate-a-model.md
+
+ Title: "Duplicate a model in Microsoft SharePoint Syntex"
+++
+audience: admin
++
+search.appverid:
+
+ - enabler-strategic
+ - m365initiative-syntex
+localization_priority: Priority
+description: "Learn how and why to duplicate a model in Microsoft SharePoint Syntex."
++
+# Duplicate a model in Microsoft SharePoint Syntex
+
+Duplicating a document understanding model can save you time and effort if you need to create a new model, and know that an existing model is very similar to what you need.
+
+For example, an existing model named ΓÇ£ContractsΓÇ¥ classifies the same files you need to work with. Your new model will extract some of the existing data, but will need to be updated to extract some additional data. Instead of creating and training a new model from scratch, you can use the duplicate model feature to make a copy of the Contracts model, which will also copy all associated training items, such as example files and entity extractors.
+
+When you duplicate the model, after you rename it (for example, to ΓÇ£Contract RenewalsΓÇ¥), you can then make updates to it. For example, you can choose to remove some of the existing extracted fields that you donΓÇÖt need, and then train the model to extract a new one (for example, ΓÇ£Renewal dateΓÇ¥).
+
+## Duplicate a model
+
+Follow these steps to duplicate a document understanding model.
+
+1. From the content center, select **Models** to see your models list.
+
+2. On the **Models** page, select the model you want to duplicate.
+
+3. By using either the ribbon or the **Show actions** button (next to the model name), select **Duplicate**.</br>
+
+ ![Screenshot of the Models page showing a selected model with the Duplicate options highlighted.](../media/content-understanding/select-model-duplicate-both.png) </br>
+
+4. On the **Duplicate model** panel:
+
+ a. Under **Name**, enter the new name of the model that you want to duplicate.</br>
+
+ ![Screenshot showing the Duplicate model panel.](../media/content-understanding/duplicate-model-panel.png) </br>
+
+ b. Under **Description**, add a description of your new model.
+
+ c. (Optional) Under **Advanced settings**, select whether you want to associate an existing [content type](/sharepoint/governance/content-type-and-workflow-planning#content-type-overview).
+
+5. Select **Duplicate**.
+
+## See Also
+[Create a classifier](create-a-classifier.md)
+
+[Rename a model](rename-a-model.md)
+
+[Create an extractor](create-an-extractor.md)
+
+[Document Understanding overview](document-understanding-overview.md)
+
+[Explanation types](explanation-types-overview.md)
+
+[Apply a model](apply-a-model.md)
+
+[SharePoint Syntex Accessibility Mode](accessibility-mode.md)
contentunderstanding Rename A Model https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/contentunderstanding/rename-a-model.md
+
+ Title: "Rename a model in Microsoft SharePoint Syntex"
+++
+audience: admin
++
+search.appverid:
+
+ - enabler-strategic
+ - m365initiative-syntex
+localization_priority: Priority
+description: "Learn how and why to rename a model in Microsoft SharePoint Syntex."
++
+# Rename a model in Microsoft SharePoint Syntex
+
+At some point, you might want to rename a document understanding model. A common example is when you create an initial draft of a model, you might not have given a lot of thought as to the final name (for example, you might have named it ΓÇ£AlexWilburModel1ΓÇ¥). As you come closer to finalizing the model and putting it to use, you realize that a more proper name would be ΓÇ£Contract Renewals,ΓÇ¥ and you want to rename it.
+
+Another example is when your organization makes a decision to refer to a process or document type by a different name. For example, after you create your model and are ready to apply it, your organization might mandate that all ΓÇ£ContractsΓÇ¥ will now formally be referred to as ΓÇ£Agreements.ΓÇ¥ If needed, you can choose to rename your model from ΓÇ£Contract RenewalsΓÇ¥ to ΓÇ£Agreement Renewals.ΓÇ¥
+
+> [!IMPORTANT]
+> You can only rename a document understanding model if it has not been applied to a document library.
+
+Renaming a model also renames the [content type](/sharepoint/governance/content-type-and-workflow-planning#content-type-overview) that is associated with the model.
+
+## Rename a model
+
+Follow these steps to rename a document understanding model.
+
+1. From the content center, select **Models** to see your models list.
+
+2. On the **Models** page, select the model you want to rename.
+
+3. By using either the ribbon or the **Show actions** button (next to the model name), select **Rename**. </br>
+
+ ![Screenshot of the Models page showing a selected model with the Rename options highlighted.](../media/content-understanding/select-model-rename-both.png) </br>
+
+4. On the **Rename model** panel:
+
+ a. Under **New name**, enter the new name of the model that you want to rename.</br>
+
+ ![Screenshot showing the Rename model panel.](../media/content-understanding/rename-model-panel.png) </br>
+
+ b. (Optional) Under **Advanced settings**, select whether you want to associate an existing [content type](/sharepoint/governance/content-type-and-workflow-planning#content-type-overview). If you choose **Use an existing content type**, the model will be renamed to match the selected content type.
+
+5. Select **Rename**.
+
+## See Also
+[Create a classifier](create-a-classifier.md)
+
+[Create an extractor](create-an-extractor.md)
+
+[Rename an extractor](rename-an-extractor.md)
+
+[Document Understanding overview](document-understanding-overview.md)
+
+[Explanation types](explanation-types-overview.md)
+
+[Apply a model](apply-a-model.md)
contentunderstanding Rename An Extractor https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/contentunderstanding/rename-an-extractor.md
+
+ Title: "Rename an extractor in Microsoft SharePoint Syntex"
+++
+audience: admin
++
+search.appverid:
+
+ - enabler-strategic
+ - m365initiative-syntex
+localization_priority: Priority
+description: "Learn how and why to rename an extractor in Microsoft SharePoint Syntex."
++
+# Rename an extractor in Microsoft SharePoint Syntex
+
+At some point, you might need to rename an extractor if you want to refer to an extracted data field by a different name. For example, your organization decides to make changes to their contract documents, and refers to ΓÇ£customersΓÇ¥ as ΓÇ£clientsΓÇ¥ in their documents. If you were extracting a ΓÇ£CustomerΓÇ¥ field in your model, you can choose to rename it to ΓÇ£Client.ΓÇ¥
+
+When you sync your updated model to your SharePoint document library, you will see a new ΓÇ£ClientΓÇ¥ column in your document library view. Your view will retain the ΓÇ£CustomerΓÇ¥ column for past activity, but will update the new ΓÇ£ClientΓÇ¥ column for all new documents that are processed by your model.
+
+> [!IMPORTANT]
+> Make sure to sync your updated model to the document libraries where you had previously applied it for the new column name to display.
+
+## Rename an extractor
+
+Follow these steps to rename an entity extractor.
+
+1. From the content center, select **Models** to see your models list.
+
+2. On the **Models** page, in the **Name** column, select the model for which you want to rename an extractor.
+
+3. Under **Entity extractors**, select the name of the extractor you want to rename, and then select **Rename**.</br>
+
+ ![Screenshot of the Entity extractors section showing a selected extractor with the Rename option highlighted.](../media/content-understanding/entity-extractor-rename.png) </br>
+
+4. On the **Rename entity extractor** panel:
+
+ a. Under **New name**, enter the new name of the extractor.</br>
+
+ ![Screenshot showing the Entity extractor panel.](../media/content-understanding/rename-entity-extractor-panel.png) </br>
+
+ b. (Optional) Under **Advanced settings**, select whether you want to associate an existing site column.
+
+5. Select **Rename**.
+
+## See Also
+[Create an extractor](create-an-extractor.md)
+
+[Create a classifier](create-a-classifier.md)
+
+[Rename a model](rename-a-model.md)
+
+[Explanation types](explanation-types-overview.md)
+
+[Leverage term store taxonomy when creating an extractor](leverage-term-store-taxonomy.md)
+
+[Document Understanding overview](document-understanding-overview.md)
+
+[Apply a model](apply-a-model.md)
enterprise Cross Tenant Mailbox Migration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/cross-tenant-mailbox-migration.md
Get-MoveRequest -Flags "CrossTenant"
```powershell #Dumps out the test mailboxes from SourceTenant
-#Note, the filter applied on GetMailbox is for an attribute set on CA1 = ΓÇ£ProjectKermitΓÇ¥
+#Note, the filter applied on Get-Mailbox is for an attribute set on CustomAttribute1 = "ProjectKermit"
#These are the ΓÇÿtargetΓÇÖ users to be moved to the Northwind org tenant #################################################################
-$outFile = "$home\desktop\UserListToImport.csv"
-$outArray = @()
+$outFileUsers = "$home\desktop\userstomigrate.txt"
+$outFileUsersXML = "$home\desktop\userstomigrate.xml"
#output the test objects
-$Mailboxes = get-mailbox -filter "CustomAttribute1 -like ΓÇÿProjectKermit'" -resultsize unlimited
-#created these mailboxes in adv using separate scripts but you get the idea on how to define the user list to move
-Foreach ($i in $Mailboxes)
-{
- $user = get-Recipient $i.alias
- $myobj = New-Object System.Object
- $myObj | Add-Member -type NoteProperty -name primarysmtpaddress -value $i.PrimarySMTPAddress
- $myObj | Add-Member -type NoteProperty -name alias -value $i.alias
- $myObj | Add-Member -type NoteProperty -name FirstName -value $User.FirstName
- $myObj | Add-Member -type NoteProperty -name LastName -value $User.LastName
- $myObj | Add-Member -type NoteProperty -name DisplayName -value $User.DisplayName
- $myObj | Add-Member -type NoteProperty -name Name -value $i.Name
- $myObj | Add-Member -type NoteProperty -name SamAccountName -value $i.SamAccountName
- $myObj | Add-Member -type NoteProperty -name legacyExchangeDN -value $i.legacyExchangeDN $myObj | Add-Member -type NoteProperty -name ExchangeGuid -value $i.ExchangeGuid
- $outArray += $myObj
-}
-$outArray | Export-CSV $outfile -notypeinformation
+Get-Mailbox -Filter "CustomAttribute1 -like 'ProjectKermit'" -ResultSize Unlimited | Select-Object -ExpandProperty Alias | Out-File $outFileUsers
+$mailboxes = Get-Content $outFileUsers
+$mailboxes | ForEach-Object {Get-Mailbox $_} | Select-Object PrimarySMTPAddress,Alias,SamAccountName,FirstName,LastName,DisplayName,Name,ExchangeGuid,ArchiveGuid,LegacyExchangeDn,EmailAddresses | Export-Clixml $outFileUsersXML
+ ################################################################# #Copy the file $outfile to the desktop of the target on-premises #then run the below to create MEU in Target #################################################################
-$ImportUserList = import-csv "$home\desktop\UserListToImport.csv"
-$pwstr = "Something 98053 Random!!";
-$pw = new-object "System.Security.SecureString";
-for ($i=0; $i -lt $pwstr.Length; $i++) {$pw.AppendChar($pwstr[$i])} foreach ($user in $ImportUserList) {
- $tmpUser = $null
- $UPNSuffix = "@northwindtraders.com" $UPN = $user.Alias+$upnsuffix
- $tmpUser = New-MailUser -organization -UserPrincipalName $upn -ExternalEmailAddress $user.primarysmtpaddress -FirstName $user.FirstName `
- -LastName $user.LastName -SamAccountName $user.SamAccountName -ResetPasswordOnNextLogon $false `
- -Alias $user.alias -PrimarySmtpAddress $UPN -Name $User.Name -DisplayName $user.DisplayName `
- -OrganizationalUnit "OU=ContosoUsers,OU=MLB,DC=ContosoLab,DC=net" -Password $pw $x500 = "x500:" + $user.legacyExchangeDN
- $tmpUser | Set-MailUser -ExchangeGuid $user.ExchangeGuid -EmailAddresses @{Add=$x500} -CustomAttribute1 "ProjectKermit"
-}
+$mailboxes = Import-Clixml $home\desktop\userstomigrate.xml
+
+foreach ($m in $mailboxes) {
+ $organization = "@contoso.onmicrosoft.com"
+ $mosi = $m.Alias+$organization
+ $Password = [System.Web.Security.Membership]::GeneratePassword(16,4) | ConvertTo-SecureString -AsPlainText -Force
+ $x500 = "x500:" +$m.LegacyExchangeDn
+ $tmpUser = New-MailUser -MicrosoftOnlineServicesID $mosi -PrimarySmtpAddress $mosi -ExternalEmailAddress $m.PrimarySmtpAddress -FirstName $m.FirstName -LastName $m.LastName -Name $m.Name -DisplayName $m.DisplayName -Alias $m.Alias -Password $Password
+ $tmpUser | Set-MailUser -EmailAddresses @{add=$x500} -ExchangeGuid $m.ExchangeGuid -ArchiveGuid $m.ArchiveGuid -CustomAttribute1 "ProjectKermit"
+ $tmpx500 = $m.EmailAddresses | ?{$_ -match "x500"}
+ $tmpx500 | %{Set-MailUser $m.Alias -EmailAddresses @{add="$_"}}
+ }
+ ################################################################# # On AADSync machine, run AADSync #################################################################
enterprise Ms Cloud Germany Transition Add Experience https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/ms-cloud-germany-transition-add-experience.md
description: "Summary: Additional customer experience information when moving fr
# Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland (advanced)
-Tenant migrations from Microsoft Cloud Deutschland to the Germany region of Microsoft's Office 365 services are executed as a set of phases and their configured actions for each workload. This figure shows the nine phases of migration to the new German datacenters.
+Tenant migrations from Microsoft Cloud Deutschland to the Germany region of Microsoft's Office 365 services are executed as a set of phases and their configured actions for each workload. This figure shows the ten phases of migration to the new German datacenters.
-![The nine phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
+![The ten phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
The following sections provide additional information on customer experiences when moving from Microsoft Cloud Germany (Microsoft Cloud Deutschland) to Office 365 services in the new German datacenter region.
enterprise Ms Cloud Germany Transition Add Pre Work https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/ms-cloud-germany-transition-add-pre-work.md
Read and apply the [ADFS Migration steps](ms-cloud-germany-transition-add-adfs.m
<!-- before phase 5 -->
-**Applies to**: Exchange Online customers who have enabled sharing calendar and availability address space<br>
+**Applies to**: Exchange Online customers<br>
**When applied**: Any time before end of phase 9 | Step(s) | Description | Impact | |:-|:-|:-|
-| Notify external partners of the upcoming transition to Office 365 services. | Availability address space configurations allow sharing of free/busy information with Office 365. | Failure to do so may result in service or client failure at a later phase of customer migration. |
+| Notify external partners of the upcoming transition to Office 365 services. | Customers must notify their partners with whom they have enabled sharing calendar and availability address space configuration (allow sharing of free/busy information with Office 365). Availability configuration needs to transition to use the [Office 365 worldwide endpoints](https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide) when Exchange Online migration is completed. | Failure to do so may result in service or client failure at a later phase of customer migration. |
+| Notify users of required IMAP4/POP3/SMTP client changes. | Users who have device connections to Microsoft Cloud Deutschland endpoints for client protocols IMAP4, POP3, SMTP are required to manually update their client devices to switch to the [Office 365 worldwide endpoints](https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide). | Pre-communicate this dependency to users of these protocols and ensure they either switch to use Outlook mobile or Outlook on the web during this migration. Failure to update client endpoints will result in client connection failures against Microsoft Cloud Deutschland when user mailboxes are migrated. |
|||| ### Exchange Online Hybrid configuration
enterprise Ms Cloud Germany Transition Phases https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/ms-cloud-germany-transition-phases.md
description: "Summary: Understand the migration phases actions and impacts of mo
# Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland (general)
-Tenant migrations from Microsoft Cloud Deutschland (MCD) to the region "Germany" of Microsoft's Office 365 Global services are executed as a set of phases and their configured actions for each workload. This figure shows the nine phases of migration to the new German datacenters.
+Tenant migrations from Microsoft Cloud Deutschland (MCD) to the region "Germany" of Microsoft's Office 365 Global services are executed as a set of phases and their configured actions for each workload. This figure shows the ten phases of migration to the new German datacenters.
-![The nine phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
+![The ten phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
The migration process will complete over many weeks depending on the overall size and complexity of the organization. While the migration is underway, users and administrators are able to continue utilizing the services with notable changes detailed in this documentation. The graphic and table define phases and steps during the migration.
The migration process will complete over many weeks depending on the overall siz
|Power BI & Dynamics 365|15+ days|Microsoft|Migrate Power BI and Dynamics 365 content.| |Finalize Azure AD|1-2 days|Microsoft|Complete tenant cutover to worldwide.| |Clean-Up|1-2 days|Customer|Clean up legacy connections to Microsoft Cloud Deutschland, such as Active Directory Federation Services (AD FS) Relying Party Trust, Azure AD Connect, and Office client restarts.|
+|Endpoints Disabled|30 days|Microsoft|30 days after the finalization of Azure AD, the Microsoft Cloud Deutschland Azure AD service will stop endpoint access for the transitioned organization. Endpoint requests such as Authentication will fail from this point forward against the Microsoft Cloud Deutschland service. |
+ The phases and their actions ensure that critical data and experiences are migrated to the Office 365 Global services. After your tenant is added to the migration queue, each workload will be completed as a set of steps that are executed on the backend service. Some workloads may require actions by the administrator (or user), or the migration may affect usage for the phases that are executed and discussed in [How is the migration organized?](ms-cloud-germany-transition.md#how-is-the-migration-organized)
If you want to modify user photos during phase 5, see [Exchange Online Set-UserP
|Stop or delete any onboarding or offboarding mailbox moves, namely don't move mailboxes between Exchange on-premises and Exchange Online. | This ensures the mailbox move requests don't fail with an error. | Failure to do so may result in failure of the service or Office clients. | | Exchange Online mailboxes are moved from Microsoft Cloud Deutschland to Office 365 Global services.| Exchange Online configuration adds the new go-local German region to the transitioning organization. The Office 365 Global services region is set as default, which enables the internal load-balancing service to redistribute mailboxes to the appropriate default region in Office 365 services. In this transition, users on either side (MCD or Global services) are in the same organization and can use either URL endpoint. |<ul><li>Transition users and services from your legacy MCD URLs (outlook.office.de) to new Office 365 services URLs (`https://outlook.office365.com`).</li><li>Users may continue to access the service through legacy MCD URLs during the migration, however they need to stop using the legacy URLs on completion of the migration.</li><li>Users should transition to using the worldwide Office portal for Office Online features (Calendar, Mail, People). Navigation to services that aren't yet migrated to Office 365 services won't function until they are migrated. </li><li>The Outlook Web App won't provide the public folder experience during migration. </li></ul>| | Update custom DNS Settings for AutoDiscover| Customer-managed DNS settings for AutoDiscover that currently point to Microsoft Cloud Deutschland need to be updated to refer to the Office 365 Global endpoint on completion of the Exchange Online phase (phase 5). <br> Existing DNS entries with CNAME pointing to autodiscover-outlook.office.de need to be updated to point to autodiscover.outlook.com. | Availability requests and service discovery calls via AutoDiscover point directly to the Office 365 services. Customers who do not perform these DNS updates may experience Autodiscover service issues when the migration is finalized. |
+| Users must update POP3, IMAP4, SMTP client configuration. | Users who have device connections to Microsoft Cloud Deutschland endpoints for client protocols POP3, IMAP4, SMTP are required to manually update their client devices to switch to the [Office 365 worldwide endpoints](https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide) concurrent with their mailbox migration to Office 365 Germany region. <br> smtp.office365.com : SMTP (TCP:587), outlook.office365.com : IMAP4 (TCP:993), POP3 (TCP:995)| Users of these protocols must either switch to use Outlook mobile or Outlook on the web while their mailbox is transioned and update IMAP4, POP3, SMTP settings on client devices to the new endpoints on completion. Failure to update client endpoints will result in client connection failures against Microsoft Cloud Deutschland when user mailboxes are migrated. |
|||| Additional considerations:
Customers with Dynamics 365 require additional engagement to migrate the organiz
\*\* (i) Customers with Microsoft Power BI must take action in this migration scenario as defined by the Migration process provided. (ii) Failure by the customer to take action will mean that Microsoft will be unable to complete the migration. (iii) When Microsoft is unable to complete the migration due to the customer's inaction, then the customer's subscription will expire on October 29, 2021.
+## Azure AD Finalization (Phase 9, 10)
+
+**Applies to:** All customers
+
+When the Office 365 tenant completes the final step of the migration [Azure AD Finalization (Phase 9)] all services are transitioned to worldwide. No application or user should be accessing resources for the tenant against any of the Microsoft Cloud Deutschland endpoints. Automatically, 30 days after the finalization completes, the Microsoft Cloud Deutschland Azure AD service will stop endpoint access for the transitioned tenant. Endpoint requests such as Authentication will fail from this point forward against the Microsoft Cloud Deutschland service.
+
+| Step(s) | Description | Impact |
+|:-|:-|:-|
+| Update user endpoints | Ensure all users access the service using the proper Microsoft worldwide endpoints |30 days after the migration finalizes, the Microsoft Cloud Deutschland endpoints will stop honoring requests; client or application traffic will fail. |
+| Update Azure AD application endpoints | You must update Authentication, Azure Active Directory (Azure AD) Graph, and MS Graph endpoints for your applications to those of the Microsoft Worldwide service. | 30 days after the migration finalizes, the Microsoft Cloud Deutschland endpoints will stop honoring requests; client or application traffic will fail. |
+||||
+ ## Office Apps **Applies to:** All customers using Office desktop applications (Word, Excel, PowerPoint, Outlook, ...)
enterprise Ms Cloud Germany Transition https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/ms-cloud-germany-transition.md
Office 365 Video is being retired on March 1, 2021. If you choose to migrate you
## How is the migration organized?
-This figure shows the nine phases of migration to the new German datacenters.
+This figure shows the ten phases of migration to the new German datacenters.
-![The nine phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
+![The ten phases of migration to the new Germany datacenters](../media/ms-cloud-germany-migration-opt-in/migration-organization.png)
These phases start when you [opt-in for migration](./ms-cloud-germany-migration-opt-in.md). Most of the migration phases are executed as back-end service operations with minimal customer interaction required and are executed one phase after the other. The start for additional customer-led tasks and overall migration status will be communicated through the Message center of the Microsoft 365 admin center during the migration process. Example of tasks may include customer-managed DNS updates, reconfiguration of hybrid setup for Exchange hybrid customers, or Azure migration.
You are notified of migration progress with Message center posts. The posts will
- Power BI complete - Final cutover of services is complete
+After the final cutover of Azure AD to the worldwide service, it is expected all clients and applications are fully transitioned to use the correct endpoints. There is a 30-day window after the final cutover where it may be possible to continue to obtain Azure AD tokens from the Microsoft Cloud Deutschland service. When the 30-day window expires, clients and applications will no longer be able to access the Azure AD endpoints of Microsoft Cloud Deutschland. Applications or user access will fail from this point. You must ensure all users and applications are migrated to the correct endpoints before this time window closes.
+ ## Moving to the new German datacenter regions Existing Microsoft Cloud Deutschland customers can now begin to migrate their Office 365, Dynamics 365 Customer Engagement, and Power Platform services. The first step is to [opt-in to a Microsoft-led migration](./ms-cloud-germany-migration-opt-in.md) to our new German datacenter regions. When you renew your subscription, you automatically opt-in for a Microsoft-assisted migration. Microsoft will notify customer tenant administrators with e-mail and in the Message center of the Microsoft 365 admin center when this has happened. However, if you prefer to start the process now, you can [opt-in](./ms-cloud-germany-migration-opt-in.md) directly in Microsoft 365 admin center today. Migrations are expected to begin in early 2021 and will be completed by October 29, 2021.
enterprise Turn Off Directory Synchronization https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/turn-off-directory-synchronization.md
description: In this article, find information about using PowerShell to turn of
# Turn off directory synchronization for Microsoft 365
-You can use PowerShell to turn off directory synchronization. However, it is not recommended that you turn off directory synchronization as a troubleshooting step. If you need assistance with troubleshooting directory synchronization, see the [Fixing problems with directory synchronization for Microsoft 365](fix-problems-with-directory-synchronization.md) article.
+You can use PowerShell to turn off directory synchronization and convert your synchronized users to cloud-only. However, it is not recommended that you turn off directory synchronization as a troubleshooting step. If you need assistance with troubleshooting directory synchronization, see the [Fixing problems with directory synchronization for Microsoft 365](fix-problems-with-directory-synchronization.md) article.
[Contact support](https://support.office.com/article/32a17ca7-6fa0-4870-8a8d-e25ba4ccfd4b) for business products if needed.
managed-desktop Apps MCS https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/get-ready/apps-MCS.md
Title: Working with Microsoft Consulting Services
-description: preparation and steps to follow to work with MCS to package your apps
-keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation, apps, MCS, packaging
+description: Preparation and steps to follow to work with MCS to package your apps
+keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+f1.keywords:
+- NOCSH
+ ms.localizationpriority: normal -
+audience: Admin
# Working with Microsoft Consulting Services
To work with MCS app packaging, **you must provide these elements**:
**MCS will take care of these actions:** - Checking whether the app is prohibited or restricted in the Microsoft Managed Desktop environment.-- Testing of installation, starting, and uninstallation of the app to ensure compatibility with Windows 10. If MCS discovers a compatibility issue, they will hand off the app to the [App Assure](/fasttrack/products-and-capabilities#app-assure) program for remediation.
+- Testing of installation, starting, and uninstallation of the app to ensure compatibility with Windows 10. If MCS discovers a compatibility issue, they will hand off the app to the [App Assure](https://docs.microsoft.com/fasttrack/products-and-capabilities#app-assure) program for remediation.
- Packaging the app to your specification and then testing app deployment by using Microsoft Intune. ## App delivery schedule
managed-desktop Localization https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/get-started/localization.md
+
+ Title: Localize the user experience
+description: How to localize devices for users
+keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
++
+f1.keywords:
+- NOCSH
+
+ms.localizationpriority: normal
+++
+audience: Admin
++
+# Localize the user experience
+
+Users of Microsoft Managed Desktop devices can select the language of their choice either during the setup process (the "out of box experience") or afterwards.
+
+## During setup (the "out of box experience")
+
+During the process of completing setup, users can select the language of their choice. This selection affects these attributes:
+
+- Windows 10 language features:
+ - Display language
+ - Keyboard language
+ - Language-related Features on Demand
+
+- Microsoft 365 Apps for Enterprise language features:
+ - Display language
+ - Proofing and authoring tools
+
+> [!NOTE]
+> Users can only get language-related Features On Demand by selecting the language during the setup process.
+
+## After completing setup
+
+Users can select the language of their choice for Windows 10 and Microsoft 365 Apps for Enterprise anytime after the setup process is complete. Specifically:
+
+- Windows 10 language features:
+ - Display language
+ - Keyboard language
+
+- Microsoft 365 Apps for Enterprise language features:
+ - Display language
+ - Proofing and authoring tools
+
+To make the [Supported languages](#supported-languages) for Microsoft 365 Apps for Enterprise available for your users to install, add the users to the **Modern Workplace-Office-Language_Packs** group. The languages will be available in the Intune Company Portal.
++
+## Supported languages
+
+For new devices, your manufacturer must provide device images that include the languages you require. If your manufacturer's image includes languages other than those provided in the supported languages list it is still supported by the service.
+
+If you are reusing existing devices, you might need to work with your Microsoft account representative to obtain appropriate images. For more information, see [Device images](../service-description/device-images.md).
+
+The [universal image](../service-description/device-images.md#universal-image) provided by Microsoft Managed Desktop includes these languages and for Windows 10:
+
+- English (US, GB, AU, CA, IN)
+- Spanish (Spain, Mexico)
+- Japanese
+- French (France, Canada)
+- German
+- Portuguese (Brazil)
+- Italian
+- Chinese Simplified
+- Dutch
+- Swedish
+- Danish
+- Finnish
+- Russian
+- Norwegian (Bokmal)
+- Korean
+- Chinese Traditional
+- Polish
+- Turkish
+- Arabic
+- Hebrew
+- Portuguese (Portugal)
+- Czech
+- Hungarian
+- Thai
+- Indonesian
+- Greek
+- Slovak
+- Vietnamese
+- Slovenian
+- Croatian
+- Romanian
+- Lithuanian
+- Bulgarian
+- Serbian (Latin alphabet)
+- Latvian
+- Ukrainian
+- Estonian
+
+Microsoft 365 Apps for Enterprise might support a slightly different list.
+
+If your users need a language other than the ones listed here, file a [support request](../working-with-managed-desktop/admin-support.md) by using the [Admin portal](access-admin-portal.md).
+
+## Languages for support and operations
+
+### User support
+Microsoft Managed Desktop provides support only in English. If users choose another language in the Get Help app, they will get support from the general Microsoft support channels, rather than support directly from Microsoft Managed Desktop. For more information, see [Getting help for users](../working-with-managed-desktop/end-user-support.md).
+
+If your users need support in other languages, you'll have to provide that through non-Microsoft support sources or from your own organization.
+
+### Admin support and operations
+Microsoft Managed Desktop provides admin support only in English. This includes the Admin portal and all communications with Microsoft Managed Desktop Operations. You should assume that all admin-related interactions and interfaces will be in English, unless specified otherwise.
++
managed-desktop Register Devices Partner https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/get-started/register-devices-partner.md
Title: Steps for Partners to register devices description: How Partners can register devices so they can be managed by Microsoft Managed Desktop
+keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+ f1.keywords: - NOCSH
+ms.localizationpriority: normal
+++
+audience: Admin
# Steps for Partners to register devices
managed-desktop Register Devices Self https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/get-started/register-devices-self.md
Title: Register new devices yourself description: Register devices yourself so they can be managed by Microsoft Managed Desktop
+keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+ f1.keywords: - NOCSH
+ms.localizationpriority: normal
+++
+audience: Admin
# Register new devices yourself
managed-desktop Register Reused Devices Self https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/get-started/register-reused-devices-self.md
Title: Register existing devices yourself description: Register reused devices you might already have yourself so they can be managed by Microsoft Managed Desktop
+keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+ f1.keywords: - NOCSH
+ms.localizationpriority: normal
+++
+audience: Admin
# Register existing devices yourself
managed-desktop Index https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/intro/index.md
Title: Is Microsoft Managed Desktop right for you?
description: Orientation for what the service is and shortcuts to articles for different audiences keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+audience: ITpro
ms.localizationpriority: normal
Your IT admins benefit from these features:
Microsoft Managed Desktop takes on the burden of managing registered devices and the Microsoft software they use. - **Hardware:** Instead of your IT department having to research and test devices (and their drivers), specific devices are carefully tested by Microsoft Managed Desktop, resulting in a curated [list of devices](../service-description/device-list.md) that meet enterprise-level performance requirements and are guaranteed to work with the service. You can either obtain devices yourself (or work with a partner) or reuse devices you already have, provided they are on the approved list. Registering devices is easy and straightforward, and before they're deployed, you can also [customize](../working-with-managed-desktop/config-setting-overview.md) certain aspects of the device experience for your users.+ - **Updates:** Microsoft Managed Desktop sets up and manages all aspects of [deployment groups](../service-description/updates.md) for Windows 10 quality and feature updates, drivers, firmware, anti-virus definitions, and Microsoft 365 Apps for enterprise updates. This includes extensive testing and verification of all updates, assuring that registered devices are always up to date and minimizing disruptions, freeing your IT department from that ongoing task.+ - **Apps:** As part of Microsoft 365 Enterprise, Microsoft provides (and manages) several key Microsoft apps for you. But you probably also have other apps that you need for your business. Instead of your IT department having to test, package, and deploy those apps, Microsoft helps you deploy them through the [FastTrack](https://www.microsoft.com/FastTrack) program. Additionally, Microsoft's [App Assure](https://docs.microsoft.com/fasttrack/products-and-capabilities#app-assuree) program can help remediate any app compatibility issues that arise when migrating to the latest versions of our products. Learn more at [Apps in Microsoft Managed Desktop](../get-ready/apps.md).
Microsoft Managed Desktop takes on the burden of managing registered devices and
We help maintain the security of your devices with a dedicated security operations center that monitors your devices and uses data from the unique threats that Microsoft analyzes each month. These security features are built in instead of added on later.
-We also monitor device health and provide you with insights about device performance. Learn more at [Microsoft Managed Desktop operations and monitoring](../service-description/operations-and-monitoring.md)
+We also monitor device health and provide you with insights about device performance. Learn more at [Microsoft Managed Desktop operations and monitoring](../service-description/operations-and-monitoring.md).
## Need more details?
-For more about the value of Microsoft Managed desktop, including customer stories, see [Microsoft Managed Desktop](https://aka.ms/mmd). Great places to get started with more are the [Roadmap](https://aka.ms/AA6jiam), a [Forrester Total Economic Impact case study](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/managed-desktop/intro/downloads/forrester-tei-study.pdf), and a downloadable [one-page summary](https://aka.ms/AA6ob3h). You can find the latest news at the Microsoft Managed Desktop [blog](https://aka.ms/AA6l2dd).
+
+For more about the value of Microsoft Managed Desktop, including customer stories, see [Microsoft Managed Desktop](https://aka.ms/mmd). Great places to get started with more are the [Roadmap](https://aka.ms/AA6jiam), a [Forrester Total Economic Impact case study](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/managed-desktop/intro/downloads/forrester-tei-study.pdf), and a downloadable [one-page summary](https://aka.ms/AA6ob3h). You can find the latest news at the Microsoft Managed Desktop [blog](https://aka.ms/AA6l2dd).
If Microsoft Managed Desktop seems right for your organization, you can delve into further documentation that explains more about the service, how to prepare your organization to enroll, how to get started with the service, and ongoing operations thereafter, including how you and your users can easily get help if needed. If you're already ready to come on board, start with contacting your [local account team](https://pages.email.office.com/contactmmd/).
managed-desktop Index https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/service-description/index.md
description: Outlines what is included in Microsoft Managed Desktop as a service
keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
+f1.keywords:
+- NOCSH
+ms.localizationpriority: normal
+
+audience: Admin
# Microsoft Managed Desktop service description
Microsoft Managed Desktop is a service that provides your users with a secure mo
- Configuration of devices - Features to keep users and devices secure, including Windows Hello, BitLocker, SecureBoot, and virtualization-based security according to Microsoft best practices - Device security monitoring and remediation services-- App compatibility, through [App Assure](/fasttrack/products-and-capabilities#app-assure)
+- App compatibility, through [App Assure](https://docs.microsoft.com/fasttrack/products-and-capabilities#app-assure)
- Management of updates for Windows 10 and Microsoft 365 Apps for enterprise apps - Analytical data about device and app usage - IT support for your users
Microsoft Managed Desktop is a service that provides your users with a secure mo
For details about the specific services included with Microsoft Managed Desktop, see the other articles in this section. If you've already decided that Microsoft Managed Desktop is for you, the articles in [Get ready for enrollment in Microsoft Managed Desktop](../get-ready/index.md) provide you with the steps to prepare to join the service. -- [Microsoft Managed Desktop supported regions and languages](regions-languages.md) explains which regions and languages are supported with the service.
+- [Supported regions and languages](regions-languages.md) explains which regions and languages are supported with the service.
- To guarantee the best experience for your users, only certain devices are supported by Microsoft Managed Desktop. [Program devices](device-list.md) specifies the exact device models and configurations you can use with the service, whether you provide them or work with a partner. - [Device services](device-services.md) specifies the device-related services that Microsoft will provide to subscribers. - [Device configuration](device-policies.md) clarifies the default and security-related Mobile Device Management policies that the service will apply to enrolled devices.
managed-desktop Regions Languages https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/service-description/regions-languages.md
Title: Supported regions and languages
-description: Regions and languages supported by Microsoft Managed Desktop
+ Title: Supported regions
+description: Regions supported by Microsoft Managed Desktop
keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
audience: Admin
-# Microsoft Managed Desktop supported regions and languages
+# Microsoft Managed Desktop supported regions
-This article provides details about regions and languages supported by Microsoft Managed Desktop and the regions where you can use it.
+This article provides details about regions where you can use Microsoft Managed Desktop and where it's supported. For more information about languages supported by Microsoft Managed Desktop for the user experience, see [Localize devices for users](../get-started/localization.md).
-## Supported languages
+You can still use managed devices outside of these regions without interruption to the Microsoft Managed Desktop service. For example, an employee based in the United Kingdom can work securely and receive updates on their managed device while traveling Asia, Europe, or South America.
-English is the only language available to users of Microsoft Managed Desktop. This policy includes all user interfaces for both users and administrators and all interactions with both [admin support](../working-with-managed-desktop/admin-support.md) and [user support](../working-with-managed-desktop/end-user-support.md).
+For more information on the languages supported by Microsoft Managed Desktop for user and admin experiences, see [Localize the user experience](../get-started/localization.md).
-
-You can still use managed devices outside of English-speaking regions without any interruption to the Microsoft Managed Desktop service. For example, an employee based in the United Kingdom can work securely and receive updates on their managed device while traveling in Asia, Europe, or South America.
-
-For more information about user support with Microsoft Managed Desktop, see [Support for Microsoft Managed Desktop](./support.md).
+For more information about user support with Microsoft Managed Desktop, see [Support for Microsoft Managed Desktop](support.md).
## Availability of the service
Organizations in the following countries can subscribe to Microsoft Managed Desk
- Australia - New Zealand
-Both users and administrators in these regions must use English for their devices and management tools.
security TOC https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/TOC.md
## Reference ### [Management and APIs]() #### [Overview of management and APIs](management-apis.md)
+#### [API release notes](api-release-notes.md)
#### [Microsoft Defender for Endpoint API]() ##### [Get started]() ###### [Microsoft Defender for Endpoint API license and terms](api-terms-of-use.md)
##### [Network protection](troubleshoot-np.md) ##### [Attack surface reduction rules](troubleshoot-asr.md)
-# [Microsoft 365 Security](../index.yml)
-# [Microsoft 365 Defender](../defender/microsoft-365-defender.md)
+# [Microsoft 365 Defender](../index.yml)
# [Defender for Office 365](../office-365-security/overview.md)
security Configure Endpoints Vdi https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/configure-endpoints-vdi.md
There might be associated challenges when onboarding VDIs. The following are typ
VDI devices can appear in Defender for Endpoint portal as either: -- Single entry for each device.
-Note that in this case, the *same* device name must be configured when the session is created, for example using an unattended answer file.
+- Single entry for each device.
+
+ > [!NOTE]
+ > In this case, the *same* device name must be configured when the session is created, for example using an unattended answer file.
+ - Multiple entries for each device - one for each session. The following steps will guide you through onboarding VDI devices and will highlight steps for single and multiple entries.
The following steps will guide you through onboarding VDI devices and will highl
> [!NOTE] > Domain Group Policy may also be used for onboarding non-persistent VDI devices.
-4. Depending on the method you'd like to implement, follow the appropriate steps: <br>
- **For single entry for each device**:<br>
+4. Depending on the method you'd like to implement, follow the appropriate steps:
+
+ - For single entry for each device:
- Select the **PowerShell Scripts** tab, then click **Add** (Windows Explorer will open directly in the path where you copied the onboarding script earlier). Navigate to onboarding PowerShell script `Onboard-NonPersistentMachine.ps1`. There is no need to specify the other file, as it will be triggered automatically.
+ Select the **PowerShell Scripts** tab, then click **Add** (Windows Explorer will open directly in the path where you copied the onboarding script earlier). Navigate to onboarding PowerShell script `Onboard-NonPersistentMachine.ps1`. There is no need to specify the other file, as it will be triggered automatically.
- **For multiple entries for each device**:
+ - For multiple entries for each device:
- Select the **Scripts** tab, then click **Add** (Windows Explorer will open directly in the path where you copied the onboarding script earlier). Navigate to the onboarding bash script `WindowsDefenderATPOnboardingScript.cmd`.
+ Select the **Scripts** tab, then click **Add** (Windows Explorer will open directly in the path where you copied the onboarding script earlier). Navigate to the onboarding bash script `WindowsDefenderATPOnboardingScript.cmd`.
5. Test your solution:
The following steps will guide you through onboarding VDI devices and will highl
1. Logon to device with another user.
- 1. **For single entry for each device**: Check only one entry in Microsoft Defender Security Center.<br>
- **For multiple entries for each device**: Check multiple entries in Microsoft Defender Security Center.
+ 1. Depending on the method you'd like to implement, follow the appropriate steps:
+
+ - For single entry for each device:
+
+ Check only one entry in Microsoft Defender Security Center.
+
+ - For multiple entries for each device:
+
+ Check multiple entries in Microsoft Defender Security Center.
6. Click **Devices list** on the Navigation pane.
The following steps will guide you through onboarding VDI devices and will highl
1. Set registry value to:
- ```reg
+ ```console
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection\DeviceTagging] "VDI"="NonPersistent" ``` or using command line:
- ```
+ ```console
reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection\DeviceTagging" /v VDI /t REG_SZ /d "NonPersistent" /f ```
security Data Retention Settings https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/data-retention-settings.md
You can verify the data location by navigating to **Settings** > **Data retentio
## Update data retention settings
+You can update the data retention settings. By default, the retention period is 180 days.
+ 1. In the navigation pane, select **Settings** > **Data retention**. 2. Select the data retention duration from the drop-down list.
security Manage Indicators https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/manage-indicators.md
The same list of indicators is honored by the prevention agent. Meaning, if Micr
**Automated investigation and remediation engine**<BR> The automated investigation and remediation behave the same. If an indicator is set to "Allow", Automated investigation and remediation will ignore a "bad" verdict for it. If set to "Block", Automated investigation and remediation will treat it as "bad".
+> [!NOTE]
+> The EnableFileHashComputation setting computes the file hash for the cert and file IoC during file scans. It supports IoC enforcement of hashes and certs belong to trusted applications. It will be concurrently enabled and disabled with the allow or block file setting. EnableFileHashComputation is enabled manually through Group Policy, and is disabled by default.
+ The current supported actions are: - Allow
security Onboarding https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/onboarding.md
Using the mentioned deployment tools above, you'll then be guided in configuring
## Related topics - [Onboarding using Microsoft Endpoint Configuration Manager](onboarding-endpoint-configuration-manager.md) - [Onboarding using Microsoft Endpoint Manager](onboarding-endpoint-manager.md)-- [Safe Documents in Microsoft 365 E5](security/office-365-security/safe-docs.md)
+- [Safe Documents in Microsoft 365 E5](../office-365-security/safe-docs.md)
security Time Settings https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/time-settings.md
ms.technology: mde
**Applies to:** - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2154037)-- [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804)-- >Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-settings-abovefoldlink)
security Safe Docs https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/safe-docs.md
ms.prod: m365-security
- [Microsoft Defender for Office 365 plan 2](defender-for-office-365.md) - [Microsoft 365 Defender](../defender/microsoft-365-defender.md)
-Safe Documents is a feature in Microsoft 365 E5 or Microsoft 365 E5 Security that uses [Microsoft Defender for Endpoint](/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) to scan documents and files that are opened in [Protected View](https://support.microsoft.com/office/d6f09ac7-e6b9-4495-8e43-2bbcdbcb6653).
+Safe Documents is a feature in Microsoft 365 E5 or Microsoft 365 E5 Security that uses [Microsoft Defender for Endpoint](/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) to scan documents and files that are opened in [Protected View](https://support.microsoft.com/office/d6f09ac7-e6b9-4495-8e43-2bbcdbcb6653) or [Application Guard for Office](https://support.microsoft.com/topic/9e0fb9c2-ffad-43bf-8ba3-78f785fdba46).
## What do you need to know before you begin?
Set-AtpPolicyForO365 -EnableSafeDocs $true -AllowSafeDocsOpen $false
For detailed syntax and parameter information, see [Set-AtpPolicyForO365](/powershell/module/exchange/set-atppolicyforo365).
+### Onboard to the Microsoft Defender for Endpoint Service to enable auditing capabilities
+
+To deploy Microsoft Defender for Endpoint, you need to go through the various phases of deployment. After onboarding, you can configure auditing capabilities in the Security & Compliance Center.
+
+To learn more, see [Onboard to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboarding). If you need additional help, please refer to [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding).
+ ### How do I know this worked? To verify that you've enabled and configured Safe Documents, do any of the following steps:
To verify that you've enabled and configured Safe Documents, do any of the follo
- [SafeDocsDemo.docx](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/downloads/SafeDocsDemo.docx) - [SafeDocsDemo.pptx](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/downloads/SafeDocsDemo.pptx)
- - [SafeDocsDemo.xlsx](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/downloads/SafeDocsDemo.xlsx)
+ - [SafeDocsDemo.xlsx](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/public/microsoft-365/downloads/SafeDocsDemo.xlsx)
security Threat Explorer https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/threat-explorer.md
With this report, you can:
Today, if you navigate from an alert to Threat Explorer, it opens a filtered view within the Explorer, with the view filtered by Alert policy ID (policy ID being a unique identifier for an Alert policy). We are making this integration more relevant by introducing the alert ID (see an example of alert ID below) in Threat Explorer and Real-time detections so that you see messages which are relevant to the specific alert, as well as a count of emails. You will also be able to see if a message was part of an alert, as well as navigate from that message to the specific alert.
-Alert ID is available within the URL when you are viewing an individual alert; an example being `https://protection.office.com/viewalerts?id=372c9b5b-a6c3-5847-fa00-08d8abb04ef1`
+Alert ID is available within the URL when you are viewing an individual alert; an example being `https://protection.office.com/viewalerts?id=372c9b5b-a6c3-5847-fa00-08d8abb04ef1`.
> [!div class="mx-imgBorder"] > ![Filtering for Alert ID](../../media/AlertID-Filter.png)
Currently, we surface delivery location in the email grid and email flyout. The
> - There will be new fields and values for **Detection technologies** and **Additional actions** (especially for ZAP scenarios). You'll need to evaluate your existing saved queries and tracked queries to make sure they work with the new values. > [!div class="mx-imgBorder"]- > ![Additional Actions in Explorer](../../media/Additional_Actions.png) ### System overrides
Currently, we surface delivery location in the email grid and email flyout. The
*System overrides* enable you to make exceptions to the intended delivery location of a message. You override the delivery location provided by the system, based on the threats and other detections identified by the filtering stack. System overrides can be set through tenant or user policy to deliver the message as suggested by the policy. Overrides can identify unintentional delivery of malicious messages due to configurations gaps, such as an overly broad Safe Sender policy set by a user. These override values can be: - Allowed by user policy: A user creates policies at the mailbox level to allows domains or senders.+ - Blocked by user policy: A user creates policies at the mail box level to block domains or senders.+ - Allowed by org policy: The organization's security teams set policies or Exchange mail flow rules (also known as transport rules) to allow senders and domains for users in their organization. This can be for a set of users or the entire organization.+ - Blocked by org policy: The organization's security teams set policies or mail flow rules to block senders, domains, message languages, or source IPs for users in their organization. This can be applied to a set of users or the entire organization.+ - File extension blocked by org policy: An organization's security team blocks a file name extension through the anti-malware policy settings. These values will now be displayed in email details to help with investigations. Secops teams can also use the rich-filtering capability to filter on blocked file extensions. [![System Overrides in Explorer](../../media/System_Overrides.png)](../../media/System_Overrides.png#lightbox)
You can now sort and filter on system or custom user tags to quickly grasp the s
> [!IMPORTANT] > Filtering and sorting by user tags is currently in public preview. This functionality may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided about it.
-![Tags column in Explorer](../../media/threat-explorer-tags.png)
+> [!div class="mx-imgBorder"]
+> ![Tags column in Explorer](../../media/threat-explorer-tags.png)
### Timezone improvements
As part of data enrichment, you'll be able to see all the different Exchange tra
You'll be able to see both the GUID and the name of the transport rules that were applied to the message. You'll be able to search for the messages by using the name of the transport rule. This is a "Contains" search, which means you can do partial searches as well.
-#### Important note:
-
-ETR search and name availability depend on the specific role that's assigned to you. You need to have one of the following roles/permissions to view the ETR names and search. If you don't have any of these roles assigned to you, you can't see the names of the transport rules or search for messages by using ETR names. However, you could see the ETR label and GUID information in the Email Details. Other record-viewing experiences in Email Grids, Email flyouts, Filters, and Export are not affected.
--- EXO Only - Data Loss Prevention: All-- EXO Only - O365SupportViewConfig: All-- Microsoft Azure Active Directory or EXO - Security Admin: All-- AAD or EXO - Security Reader: All-- EXO Only - Transport Rules: All-- EXO Only - View-Only Configuration: All-
-Within the email grid, Details flyout, and Exported CSV, the ETRs are presented with a Name/GUID as shown below.
-
-> [!div class="mx-imgBorder"]
-> ![Exchange Transport Rules](../../media/ETR_Details.png)
+> [!IMPORTANT]
+> ETR search and name availability depend on the specific role that's assigned to you. You need to have one of the following roles/permissions to view the ETR names and search. If you don't have any of these roles assigned to you, you can't see the names of the transport rules or search for messages by using ETR names. However, you could see the ETR label and GUID information in the Email Details. Other record-viewing experiences in Email Grids, Email flyouts, Filters, and Export are not affected.
+>
+> - EXO Only - Data Loss Prevention: All
+> - EXO Only - O365SupportViewConfig: All
+> - Microsoft Azure Active Directory or EXO - Security Admin: All
+> - AAD or EXO - Security Reader: All
+> - EXO Only - Transport Rules: All
+> - EXO Only - View-Only Configuration: All
+>
+> Within the email grid, Details flyout, and Exported CSV, the ETRs are presented with a Name/GUID as shown below.
+>
+> > [!div class="mx-imgBorder"]
+> > ![Exchange Transport Rules](../../media/ETR_Details.png)
### Inbound connectors
This example uses Threat Explorer.
4. Select the Subject of any message under the Email tab > Details tab to see additional impersonation information like Impersonated Domain / Detected location.
-5. **OR** Select **Impersonated user** and type a protected user's email address in the textbox.
+ **OR**
-6. Select the **Subject** of any message under **Email tab** > **Details tab** to see additional impersonation information about the user or domain, and the *Detected location*.
+ Select **Impersonated user** and type a protected user's email address in the textbox.
+ > [!TIP]
+ > **For best results**, use *full email addresses* to search protected users. You will find your protected user quicker and more successfully if you search for *firstname.lastname@contoso.com*, for example, when investigating user impersonation. When searching for a protected domain the search will take the root domain (contoso.com, for example), and the domain name (*contoso*). Searching for the root domain *contoso.com* will return both impersonations of *contoso.com* and the domain name *contoso*.
-> [!TIP]
-> **For best results**, use *full email addresses* to search protected users. You will find your protected user quicker and more successfully if you search for *firstname.lastname@contoso.com*, for example, when investigating user impersonation. When searching for a protected domain the search will take the root domain (contoso.com, for example), and the domain name (*contoso*). Searching for the root domain *contoso.com* will return both impersonations of *contoso.com* and the domain name *contoso*.
+5. Select the **Subject** of any message under **Email tab** > **Details tab** to see additional impersonation information about the user or domain, and the *Detected location*.
+
+ :::image type="content" source="../../media/threat-ex-views-impersonated-user-image.png" alt-text="The Threat Explorer details pane for a protected user showing the detection location, and the threat that was detected (here phish impersonation of a user).":::
> [!NOTE] > In step 3 or 5, if you choose **Detection Technology** and select **Impersonation domain** or **Impersonation user** respectively, the information in the **Email tab** > **Details tab** about the user or domain, and the *Detected location* will be shown only on the messages that are related to the user or domain listed on the *Anti-Phishing policy* page.